[FW1] Routing on firewalls

["Haji, Mohmed" <HajiM@logica.com>]

I am trying to install a firewall. I have sucessfully installed the licence.
I have not yet installed a security policy or run the fwputkey command.

We have the following configuration

firewall IP1 ----------  IP2 Building Router IP3 ------------- Internal
Network

IP1 = 193.123.204.9
IP2 = 193.123.204.10
IP3 = 158.234.70.1 
Internal network = Class B addresses with the Class B address 158.234.0.0 

I can ping IP2 from a machine in our internal network. But I can't ping IP1
(the firewall interface). This suggests to me that the routing table on the
building router is OK but the routing table on the firewall isn't.

I think that I need to add a static route to the internal network on the
firewall.
To this end, I used the following command

route add 158.234.0.0/16 193.123.204.10

Where the Subnet Mask is 16 and 193.123.204.10 is IP3 on the diagram above.
(The 158.234.0.0 is the network ID of our internal network as explained
above).

After doing this, I tried pinging the firewall but got the same request
timed out message. When I checked the routing table using the netstat -nr
command, I found that the route I added wasn't listed. Is what I tried to do
correct? What am I doing wrong?

Many thanks for any help offered!


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================