Does anyone know how to install DNS server on Winnt4 for mail(exchange server) purpose.? thanks in advance -----Original Message----- From: Hague, Alex [mailto:HagueA@akcity.govt.nz] Sent: Tuesday, July 31, 2001 11:17 AM To: Winway Cc: firewalls@pluto.gnac.com Subject: RE: Multy FW for Same nodes Hi Winway, This sounds like a routing problem. The nodes will need a route to tell them to use FW1-B via interface B for a specific address range. Assuming that the nodes have FW1-A set up as the default gateway via interface A then... If the hosts infront of FW1-B have a specific address range then you can add a route on your nodes for that address range to use FW1-B as the default gateway via interface B. If the hosts infront of FW1-B have no specific address range then you'll need to NAT the traffic and add a route on each of your nodes for the nat'd address to use FW1-B as the default gateway via interface B. I think that that will solve your problem... (there might be better ways to achieve what you are after though). Cheers, Alex Hague -----Original Message----- Hi, I have a network topology like this, | | FW1-A FW1-B Net-A ___|__________________ | | | | Node-1 ... Node-n | Net-B _____|_____________|_____|__ Each node has 2 interfaces with 2 IPs in Net-A and Net-B respectively, and certainly the routing funtion of them are disabled. The problem appears when I put this topology to realization. When I set the defaultrouter of the nodes to FW1-A, I can't connect to them from outside by the Net-B addresses, and vice versa. Looking into the logs, I find that, when the defaultrouter is set to FW1-A, the packets of the connection attempt from outside to Net-B address come in via FW1-B, but the responsing packets go out via FW1-A because of the defaultrouter setting, and are dropped by FW1-A as "unknown estabished TCP packet". Then I think maybe my topology is unpractical in state inspection machanism. But I'm not sure about this. Occasionally, I find that if a node is Win2000, it can be connected from outside by either addresses. And the polocies and properties of the FWs are the same. So strange! Is there any explanation or solution? Thanks. Winway _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com _______________________________________________ Firewalls mailing list Firewalls@lists.gnac.net http://lists.gnac.net/mailman/listinfo/firewalls _______________________________________________ Firewalls mailing list Firewalls@lists.gnac.net http://lists.gnac.net/mailman/listinfo/firewalls _______________________________________________ Firewalls mailing list Firewalls@lists.gnac.net http://lists.gnac.net/mailman/listinfo/firewalls