trust is a funny thing -
laying out our network, the router admin setup up a /24 broadcast for our
inside internet router without any static routes. these static routes
delivered back to subnets not directly connected to the router's subnet
(hence the proxy, dmz's).
adding these static routes for these subnets allowed traceroute, telnet,
ftp, nslookup to work from the proxy subnet to the internet.
i found this out by setting up a snoop -d window on each interface of the
proxy and both firewalls; all i got was unidirectional traffic when it
originated from the proxy; but bidirectional traffic when it originated from
the firewall. this told me that only the router's subnet was working
properly.
thank you for all your correct answers.
case closed. rf.
S
U BEFORE POSTING please READ the FAQ located at
N ftp://ftp.cs.toronto.edu/pub/jdd/sun-managers/faq
. and the list POLICY statement located at
M ftp://ftp.cs.toronto.edu/pub/jdd/sun-managers/policy
A To submit questions/summaries to this list send your email message to:
N sun-managers@sunmanagers.ececs.uc.edu
A To unsubscribe from this list please send an email message to:
G majordomo@sunmanagers.ececs.uc.edu
E and in the BODY type:
R unsubscribe sun-managers
S Or
. unsubscribe sun-managers original@subscription.address
L To view an archive of this list please visit:
I http://www.latech.edu/sunman.html
S
T
This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:14:20 CDT