RE: Problems multi-ip'ing NT

["Carl Friedberg" <friedberg () exs esb com>]

I seem to remember something about this from the distant past (I'm
running mostly w2k now).

Has to do with how the MS TCPIP stack responds to incoming traffic.
IIRC, it always responds from the 1st IP, no matter which of the
addresses the incoming pack went into..

I think you need some RARP to make this work. Not sure.

A better way is at the router. Add a route for each of those alias IP
addresses to the real (single) IP address on the external FW-1 NIC. I
know that works with FW-1 and nt 4 sp6a.

BTW: why don't you ask Checkpoint to supply you with the list of
mandatory service pack and hot fixes for FW-1/SP3 running on nt 4.0. If
they respond (other than sp5 with no hotfixes) plase post it here.
Inquiring minds and all that.

Carl Friedberg
carl () comets com

-----Original Message-----
From: lea () darklyte freeserve net [mailto:lea () darklyte freeserve net]
Sent: Thursday, February 01, 2001 7:13 AM
To: firewall-wizards () nfr com
Subject: [fw-wiz] Problems multi-ip'ing NT


Hi there,

        I've built quite a stripped down NT server 
(http://www.enteract.com/~lspitz/nt.html) for FW-1....FW1 is up 
and working now which is good however i'm trying to bind a group 
of 30 IP addresses to the external network card to use for NAT to 
access my externaly viewable servers.

However while NT is supposed to allow 6 IP's and then you can 
hack the registry to allow more, the server apears to respond to the 
first couple and thats it !!!

Is there a service i've disabled or could it be down to the network 
cards (compaq) themselves and thier settings ???

Or is there another way round this ?

Ta,
                Lee 
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards