Firewall Wizards mailing list archives
Re: Firewall configuration questions.
From: "daN." <dan () nesmail com>
Date: Thu, 27 Apr 2000 13:09:19 -0700
This is the problem as I see it:
1 2
<some real IP's>----<Firewall>---<some more real IP's>-----<Gateway>
where Gateway does not know that Firewall exists and expects all Real IP's
to be directly behind it and Both sets of real IPs belong to the same class C.
so lets same we want to split the subnet in half so we have the upper half in part one and the lower half in part 2 or whatever..you still have the problem of how to tell the gateway to use the firewall as a gateway to the IPs behind it. This is what the Proxy Arping does...Course I might totally be misreading the problem as well :)..
daN. At 04:03 PM 4/27/00 -0400, R. DuFresne wrote:
Organization: sysinfo.com X-Subliminal: If at first you don't suck seed... Are you sure this is the direction of the question? I may have misinterpreted it, but, I got the impression that he was asking if one can avoid NAT and do just real IP's behind the firewall. Now I might also be misreading you, but, is not your answer suited to a one to one NAT remapping of public addresses before going insideout through the firewall? Or am I misreading this whole thread? Thanks, Ron DuFresne
Current thread:
- Firewall configuration questions. John Morey (Apr 20)
- Re: Firewall configuration questions. R. DuFresne (Apr 21)
- Re: Firewall configuration questions. Paul D. Robertson (Apr 26)
- Re: Firewall configuration questions. John Morey (Apr 27)
- Message not available
- Re: Firewall configuration questions. daN. (Apr 27)
- Message not available
- Re: Firewall configuration questions. daN. (Apr 28)
- Re: Firewall configuration questions. R. DuFresne (Apr 28)
- Re: Firewall configuration questions. daN. (Apr 27)
- <Possible follow-ups>
- Re: Firewall configuration questions. Rogue Bolo (Apr 26)