Consider the following situation:
| (PPP Connection to Internet)
|
| a.b.c.6
-------------
| |
| NT firewall |------------- ( DMZ )
| | a.b.c.6/29
-------------
| 10.0.0.0/16
|
| ( Internal )
The PPP connection gives me a /29 net block, which is routed to the DMZ. The
ISP assigns my RAS interface a.b.c.6, which is, of course, in this netblock.
These IPs are static.
On a Linux platform, this particular configuration works beautifully. All
parts of my network can see each other just fine. The DMZ can go to the
Internet, the Internal network can go out just fine when I NAT. However,
when I use NT it doesn't work right in the following ways:
1. RAS does not automatically set the "Default route" upon connecting (note
that the appropriate options are checked in the RAS configuration). I can
always add the appropriate default route by-hand.
2. Nothing on the DMZ can get to the Internet, regardless of how I have the
default route set (note that "routing" is enabled via TCP/IP).
I think part of the problem is that NT can not handle seeing the same IP on
more than one physical interface (Linux certainly can) as the routing table
shows a.b.c.6 as the interface on several entries. Does anyone have any
advice on how to resolve this problem?
--
PhoneBoy (a.k.a Dameon D. Welch) dwelch@phoneboy.com
PhoneBoy's FireWall-1 FAQs -- http://www.phoneboy.com/fw1/
The views expressed herein are not necessarily those of anyone else.
______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================