NetScreen
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[nn] NetScreen-5GT "Untrust to Trust Policy" --newbie

from [kimry] [Permanent Link][Original]
To: nn@qorbit.net
Subject: [nn] NetScreen-5GT "Untrust to Trust Policy" --newbie
From: kimry <kkimry@gmail.com>
Date: Fri, 3 Nov 2006 21:27:59 -0500
Delivered-to: sp-com-lists@consult.net
Delivered-to: ns-list2@consult.net
Delivered-to: nn@qorbit.net
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type; b=SDqqGdqshwRYanP94b4Uxukjr1yyBHAXDrwRUbblntCazSOpzw2+wiHzvu6nsf/LovvyFdZ/U010E//CNL7UEK6KKd+wj5i3K5D4l501LE3D5kWC8QbiO0cLRBI42iPMoej0fMkbLcIkhhVxba8vpbXD4uc7SQRgsnUiTwTrOu0=
List-archive: <http://www.qorbit.net/nn>
List-help: <mailto:nn-request@qorbit.net?subject=help>
List-id: "Netscreen mailing list for netscreen admins." <nn.qorbit.net>
List-post: <mailto:nn@qorbit.net>
List-subscribe: <http://qorbit.net/mailman/listinfo/nn>, <mailto:nn-request@qorbit.net?subject=subscribe>
List-unsubscribe: <http://qorbit.net/mailman/listinfo/nn>, <mailto:nn-request@qorbit.net?subject=unsubscribe>
Sender: nn-bounces@qorbit.net
Hi there,

Is there a very simple tutorial for newbies to configure NetScreen-5GT
Untrust to trust policy is my problem
"I don't know where to start,
is there routing entries involved? or the trust to untrust routing would do the job? "I've no problem going out through the firewall""
"My overall configuration is Untrust & trust mode"
I want to DNAT whatever HTTP/HTTPS comes to the Untrust interface to be forwarded to a web server
untrust_ip 1.2.3.4
trust_ip     192.168.1.1
WebServer 192.168.1.111   "No DNS involved for now, I just want to see It Works page :)"
I'm pretty sure that setting policy itself is not a problem.. but should I modify a service?
cause what about the firewall UI if I allow passing HTTP request from 1.2.3.4 to 192.168.1.1 then DNAT it to 192.168.1.111

Best Regards,
--
_________________________________

Basem Elkimry 
_______________________________________________
nn mailing list
nn@qorbit.net
http://qorbit.net/mailman/listinfo/nn
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Next by Date:  Re: [nn] NetScreen-5GT "Untrust to Trust Policy" --newbie, thomasss@becyber.be
Next by Thread:  Re: [nn] NetScreen-5GT "Untrust to Trust Policy" --newbie, thomasss@becyber.be
Indexes:  [Date] [Thread] [Top] [All Lists]