Hi,
We are using NGX60 and there are 3 interfaces on it :
External eth0 216.108.193.205 (Internet)
Dmz eth2 192.168.203.254 (for 192.168.203.0/24)
Internal eth1 192.168.103.51 (for 192.168.103.0/24)
Internally, we have a host 192.168.103.52 which act as a gateway for
192.168.43.0/24
I add the route 192.168.43.0/24 using the gateway 192.168.103.52 on the
NGX60
I can ping a host on 192.168.43.0/24 from 192.168.103.0/24 and I can
initiate a terminal server connection. However, from 192.168.43.0/24 I am
just able to ping 192.168.103.51.
If I try to ping behind 192.168.103.51 (e.g 192.168.103.6) I get :
Source: 192.168.103.6
Destination: 192.168.43.94
Information: ICMP: Echo Reply
ICMP Type: 0
ICMP Code: 0
message_info: ICMP reply does not match a previous
request"...ICMP reply does not match a previous request"
If I try to initiate a terminal server session from 192.168.43.94 to
192.168.103.6, I get :
Protocol: tcp
Service: 3718
Source: 192.168.103.6
Destination: 192.168.43.94
Source Port: Terminal_server (3389)
Information: TCP packet out of state: First packet isn't SYN
tcp_flags: SYN-ACK
In addition, I have declared in the topology for NGX that 192.168.43.0/24
as a internal network but nothing to do.
I am completely stuck on this problem and I'll appreciate some help.
Thanks,
Jean-Christophe
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
