On Wed, 6 Jun 2007, r locus wrote:
In OpenBSD and pf you can do port redirects for servers on the DMZ.
Basically, BSD FW has public addresses assigned to it so it can answer
for a port 80 to public address and then can redirect to internal DMZ ip on
say port 8080.
So, with checkpoint the Web server on the DMZ has internal address and
static NAT to public address. Can checkpoint R61 (on windows 2003
server) take that incoming request which is on port 80 and then have
it redirected to internal DMZ on say port 8080?
We sometimes have customers who are desperate short of public IP
addresses.
For this one can use the mapped services. Some examples are included. Make
sure you read mthe manual and the knowledgebase articles that apply.
If you can make pf work you should be able to work this out as well.
Hugo.
--
hvdkooij AT vanderkooij DOT org http://hugo.vanderkooij.org/
This message is using 100% recycled electrons.
Some men see computers as they are and say "Windows"
I use computers with Linux and say "Why Windows?"
(Thanks JFK, for the insight.)
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
