[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW1] IP forwarding on NT
[ The following text is in the "iso-8859-1" character set. ]
[ Your display is set for the "US-ASCII" character set. Some ]
[ characters may be displayed incorrectly. ]
Hi,
Yes, this would be a NAT issue. But I must remind you, you might not
want to send your internal IP addresses out on a mailing list. The best
thing to do is come up with an EXAMPLE IP address from the 1918 of which you
are not using to describe your network. :)
--------------------------------------
lpingree@urs2.net
Computer Security Specialist
http://www.geek-guy.com <<---[ The Geek Hangout ]
-------------------------------------
If a packet hits a pocket on a socket on a port
and the bus is interrupted as a very last resort
and the address of the memory makes the data link abort
then the socket packet pocket has an error to report.
----- Original Message -----
From: Coelho <coelho@mailandnews.com>
To: Earl Robinson <earl_robinson@senet-int.com>
Cc: <fw-1-mailinglist@lists.us.checkpoint.com>
Sent: Monday, November 08, 1999 8:29 AM
Subject: Re: [FW1] IP forwarding on NT
Hi again,
This weekend was helpful to refresh my mind! :)
I checked the doc you said me to. We are using 172.16.0.0 network IP
address.
I'll tell what I have done and if something is missing, just tell me where
I'm wrong, ok?
1. Installed Windows NT, SP4, etc, etc and etc.
2. Configured both NICs looking to the point that one of them (the one
that is connect to our internel network) should not have a default gateway
and the another one (the one that is connect to our router, which one is
connect to our ISP) should have a default gateway and it's the internal IP
of this router.
3. Enabled IP forwarding in TCP/IP properties.
4. Add a route from router to gateway, pointing to gateway's external IP
address.
5. Workstations are pointing to gateway as their default gateway.
I think that's all.
Ah, if I install FW-1 so I can send packets through gateway.
I think I'm having a problem about NAT (as some of you have told me) but
I'm just asking to check these points. If it's all correct so it's really a
NAT problem.
Thanx all again!
André Luiz
At 13:09 05/11/99 -0500, Earl Robinson wrote:
>Coelho wrote:
>>
>> At 10:40 05/11/99 -0500, Earl Robinson wrote:
>> >My first guess is that you're internal network has ron-routable (RFC
>> >1918) ip addressing. You would neet to use NAT here, but without FW-1
>> >installed the router drops those
>> +++ How can I get info about this subject? I think I should study about
this.
>
>take a look at - http://www.isi.edu/in-notes/rfc1918.txt
>summary:
>the following network address spaces are for use on networks not
>connected to the internet, or on networks that have a router using nat
>to rewite their aaddress to valid addresses.
>
>10.0.0.0/8 ( mask 255.0.0.0 )
>172.16.0.0/16 ( mask 255.255.0.0 )
>192.168.0.0/24 ( mask 255.255.255.0 )
>
>any packet originating from these networks will (should) not be routed
>to the internet. Compliant ISP (all of them) have configured their
>routers to drop these packets.
>-earl
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================