[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] local.arp

To: sirving@ca.ibm.com
Subject: RE: [FW1] local.arp
From: Bhanu Mittal <bhanu@utdallas.edu>
Date: Wed, 7 Apr 1999 21:34:27 -0500 (CDT)
Cc: Kenneth Knox <ken.knox@commandsys.com>, "'donm@advent.org'" <donm@advent.org>, 'FW1' <fw-1-mailinglist@lists.us.checkpoint.com>


Hi

	In the new 4.0 A & A guide the sequence of entries is transposed.


...............................................................................

  -----
  -***-
  -* *-
  -***-        Genius is 1% inspiration, 99% persperation.
  -  *-						   Thomas E Edison 
  -* *-
  -----						     
...............................................................................

							  Bhanu@utdallas.edu

On Mon, 5 Apr 1999 sirving@ca.ibm.com wrote:

> 
> I noticed in the news groups a suggestion to create the local.arp with dos
> edit.  If I remember right, this was also mentioned in the CCS? course by
> the instructor. Something about the eof not being written correctly with
> notepad.
> 
> 
> 
> Kenneth Knox <ken.knox@commandsys.com> on 04/05/99 08:50:05 AM
> 
> Please respond to Kenneth Knox <ken.knox@commandsys.com>
> 
> To:   "'donm@advent.org'" <donm@advent.org>, "'FW1'"
>       <fw-1-mailinglist@lists.us.checkpoint.com>
> cc:    (bcc: Stuart Irving/Markham/IBM)
> Subject:  RE: [FW1] local.arp
> 
> 
> 
> 
> 
> 
> Don,
> 
> You do have the correct format for the local.arp file.  How's your route
> table look, you need to have specific routes from the NAT address to the
> inside address.  Also, make sure that the firewall knows that the addresses
> in the local.arp file are allowable addresses on the inside interface.
> Lastly, make sure that the clients you are doing the NAT's for know how to
> get back to the firewall.
> 
> Hope this helps.
> 
> Ken Knox
> Network Architect
> Command Systems, Inc.
> ken.knox@commandsys.com
> 
> -----Original Message-----
> From: donm@advent.org [mailto:donm@advent.org]
> Sent: Wednesday, March 31, 1999 6:04 PM
> To: 'FW1'
> Subject: [FW1] local.arp
> 
> 
> 
> I am running FW1 v4.0 SP1 (Build 4031) on NT4 SP4.  I have created the
> local.arp file in the /fw1/state/ directory, but it still does not seem to
> work as advertised.  I have three IP addresses that I want the external
> interface to answer for besides it's own IP address.  I have the
> appropriate
> rules setup for NAT etc., but the only way to get the external interface to
> answer those IP addresses is to manually add the addresses to the arp table
> with an "arp -s x.x.x.x xx-xx-xx-xx-xx-xx".
> 
> I cannot find exactly what I am looking for.  I saw something a few weeks
> ago about the format of the local.arp file, but cannot find it now.
> 
> My local.arp looks like this:
> 
> x.x.x.4   xx-xx-xx-xx-xx-7F
> x.x.x.40  xx-xx-xx-xx-xx-7F
> x.x.x.41  xx-xx-xx-xx-xx-7F
> 
> Is the format of this correct?  If so, why does it not work?  If not
> correct, what should it be?  Or is this just another bug in the NT version
> of FW1 V4.0..
> 
> To work around this problem for now, I am just using a startup script that
> adds the arp -s entries after boot so I do not have to enter them by hand.
> By the way I did find some info on www.phoneboy.com, but I did not find a
> reference that stated the exact format of the local.arp file on NT (I would
> make the assumption that it should be the same format on all operating
> systems, but we all know that assumption is the mother of all screw-ups!.
> 
> Any help fixing this would be greatly appreciated!
> 
> Don Moore
> Network Administrator
> Advent Enterprises, Inc.
> donm@advent.org
> 
> 
> 
> ===========================================================================
> =
> ====
>      To unsubscribe from this mailing list, please see the instructions at
>                http://www.checkpoint.com/services/mailing.html
> ===========================================================================
> =
> ====
> 
> 
> ===========================================================================
> =====
>      To unsubscribe from this mailing list, please see the instructions at
>                http://www.checkpoint.com/services/mailing.html
> ===========================================================================
> =====
> 
> 
> 
> 
> 
> 
> ================================================================================
>      To unsubscribe from this mailing list, please see the instructions at
>                http://www.checkpoint.com/services/mailing.html
> ================================================================================
> 



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: RE: [FW1] Exchange questions
Next by Date: Re: [FW1] Layer 2 Protocols - LLC2, SNA - How does FW-1 handle this traffic ??
Prev by thread: Re: [FW1] local.arp
Next by thread: [FW1] problem with fw
Index(es):
- Date
- Thread