Lexa Software: Inet-Admins@info.east.ru archive

		Apache-Talk @lexa.ru
		Inet-Admins @info.east.ru
		Filmscanners @halftone.co.uk
		Security-alerts @yandex-team.ru
		nginx-ru @sysoev.ru

СТАТЬИ

ПЕРСОНАЛЬНОЕ

ПРОГРАММЫ

ПИШИТЕ
ПИСЬМА

АРХИВ :: Inet-Admins

Inet-Admins mailing list archive (inet-admins@info.east.ru)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[inet-admins] Server farm with FW1 i Cisco NAT

To: "'inet-admins@info.east.ru'" <inet-admins@info.east.ru>
Subject: [inet-admins] Server farm with FW1 i Cisco NAT
From: Egons Bush <egons@bank.lv>
Date: Mon, 20 Mar 2000 08:28:33 +0200

Hi!

Zaatachil ASCII art, v kotorom narisovano to, kak vygladit shema seti. Na
Cisco hochetsa sdelatj NAT, shto-by dla Firewall-1 eto vygladelo kak odin IP
adres. Delajem NAT, ping idet, traceroute idet, a FTP, Telnet, NetBIOS, itd
ni v kakuju. V testovom rezhime na FW dla ServerFarm razresheno vse dla
vseh. Bez NATa - vse prohodit. V chem grabli? Mozhet NAT kak-to po umnomu
nuzhno delatj, osobenno, esli eto Ethernet-Ethernet NAT? 

Esli vkljuchit' "debug ip packet", to na Cisco E1 (na FW) vidni kakie-to
encapsulation errori... Nikakoi encapuljacii tam netu. IOSi v predelah 11.3
menjal - ne pomogaet. 12.x ne mogu postavit' ibo pamjati net.

Egons


           External networks
                   |
                   |
                   |
    S              |
    e f            |
    r a---------Firewall--------DMZ
    v r            |
    e m            |
    r              |  
                   |e1
                 Cisco
                   |e0
                   |  
                   |
                   |
                  LAN

Follow-Ups:
- Re: [inet-admins] Server farm with FW1 i Cisco NAT
  - From: Dmitri Kalintsev

Prev by Date: Re: [inet-admins] Cisco & RADIUS
Next by Date: Re: [inet-admins] Server farm with FW1 i Cisco NAT
Previous by thread: [inet-admins] Cisco & RADIUS
Next by thread: Re: [inet-admins] Server farm with FW1 i Cisco NAT
Index(es):
- Date
- Thread