nat @ wins issue w/FW4.1
From: Bob Perez (bperez77@hotmail.com)Date: 06/28/02
- Next message: chrisclu: "Re: kerio or psygate"
- Previous message: Darren Beale: "Cisco VPN Client + IP protocol 50 (ESP)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: bperez77@hotmail.com (Bob Perez) Date: 28 Jun 2002 12:32:56 -0700
I have an issue with Wins responses and natting.
In my firewall I have a rule that says if you are headed to a
particular external ISP address, once it hits the FW NAT itto an
Internal server address. This works fine no problems.
But when I dial in and I try to ping by host name to that internal
machine it resolves to the external address. I see the packet coming
across the FW to the WINS server and I see the response from the WINS
server to the machine and then the ping begins but what is odd is that
the FW NATTED the response address to the external address. I also
have a rule before my nat rule that says "If internal net dest for any
int net keep all originals which should cause the external nat rule to
never be reached.
I also know the firewall is doing the nat on the wins request cause if
I disable the rule it all works fine. Also, if I ping the netbios
name with the DNS suffix applied to it, it works fine as well too.
The problem only occurs when pinging the netbios name and the dial up
connection has no DNS suffix attached to it. So the workaround is to
attach a DNS suffix but I would like to resolve the issue in the FW.
Thanks.
Checkpoint 4.1 Nokia IP 330
- Next message: chrisclu: "Re: kerio or psygate"
- Previous message: Darren Beale: "Cisco VPN Client + IP protocol 50 (ESP)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
