RE: Problems multi-ip'ing NT

["Sigler, Karl" <KSigler () nbg com>]

I'm assuming you are trying to set up static NAT using those 30 addrs? You
shouldn't need to bind any of the NAT'ed IP's to the NT box at all. Instead
set up the local.arp file in the fw/state directory to allow NT to respond
to arp requests for those IP addressees. Syntax for local.arp would look
like this:

translated_ip_address    mac_address_of_Firewalls_ext_NIC

for example If you had an internal server 10.10.10.10 to be static NAT'ed to
appear the Internet as 209.10.10.10 you would enter the following:

206.10.10.10    0a-0a-0a-0a-0a-0a [your firewalls external MAC]

This allows NT to proxy arp for the IP. You'll need to reinstall the
firewall policy after making changes to local.arp.

Hope this helps,

Karl Sigler
Atlanta, GA

-----Original Message-----
From: lea () darklyte freeserve net [mailto:lea () darklyte freeserve net]
Sent: Thursday, February 01, 2001 7:13 AM
To: firewall-wizards () nfr com
Subject: [fw-wiz] Problems multi-ip'ing NT


Hi there,

        I've built quite a stripped down NT server 
(http://www.enteract.com/~lspitz/nt.html) for FW-1....FW1 is up 
and working now which is good however i'm trying to bind a group 
of 30 IP addresses to the external network card to use for NAT to 
access my externaly viewable servers.

However while NT is supposed to allow 6 IP's and then you can 
hack the registry to allow more, the server apears to respond to the 
first couple and thats it !!!

Is there a service i've disabled or could it be down to the network 
cards (compaq) themselves and thier settings ???

Or is there another way round this ?

Ta,
                Lee 
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards