Netscreen config question
David Gillett
dgillett at NIKU.COM
Tue Apr 17 12:29:36 EDT 2001
It's a router -- it needs to know where to send packets that are bound for
other networks ("default gateway").
Note that its interfaces are only Ethernet. So you're going to have
*another* router that connects to the DSL/T1/whatever line. The Ethernet
side of that router should be on the same network as the untrusted side of
the NetScreen, and the address of that router interface is what you need to
tell the NetScreen to use as a default gateway.
David Gillett
Senior Network Engineer
Niku Corp.
> -----Original Message-----
> From: VPN Mailing List [mailto:VPN at SECURITYFOCUS.COM]On Behalf Of David
> Newman
> Sent: Monday, April 16, 2001 7:14 AM
> To: VPN at SECURITYFOCUS.COM
> Subject: Netscreen config question
>
>
> I'm looking to configure a Netscreen-5 as both router and VPN gateway. The
> trusted interface uses a private address with no problem. The untrusted
> side is asking for both an address and default gateway, and it will NOT
> accept identical entries here.
>
> It's a router -- it shouldn't need a default gateway. Is it acceptable to
> supply all zeros as the untrusted default gateway?
>
> Thanks.
>
> David Newman
>
> VPN is sponsored by SecurityFocus.COM
>
VPN is sponsored by SecurityFocus.COM
More information about the VPN
mailing list