XPost: comp.security.firewalls   
   From: badnews@hansenonline.net   
      
   On Wed, 10 Dec 2003 04:16:39 GMT, Dave Thornburgh spoketh   
      
   >   
   >"Tim W"  wrote in message   
   >news:4d60d73b.0312091321.3af54f88@posting.google.com...   
   >> Hello:   
   >>   
   >> I've run into problems with our new sonic wall pro 330. My main   
   >> problem is we are running it for a web hosting company which has   
   >> machines with multiple IP addresses. Each network card in each machine   
   >> has more than 1 IP address bound to it, for specific functions. In   
   >> some cases some web sites get their own IP addresses which should be   
   >> fine except sonic wall detects it as some sort of attack or IP spoof.   
   >> I have talked with Sonic Wall's support and received very few answers   
   >> other than it wont work with the latest firmware, or even the 2   
   >> previous. I was told to go back to firmware dated over a year old now,   
   >> which seems to be working but this is not a proper solution. I would   
   >> imagine that a sonic wall could handle passing traffic to any IP   
   >> address bound to a network card behind it, but it appears as though it   
   >> resolves it to a MAC address, and will only pass it to the primary IP   
   >> address of the machine.   
   >>   
   >   
   >Not that I know the Sonicwall or anything, but it seems to me that the MAC   
   >addresses should be immaterial - I mean, what would happen if you had a   
   >switch between the Sonicwall and the server farm?  Everything would have the   
   >same MAC!   
   >   
   >Dave   
      
   No, it wouldn't. If you had a router between the SW and the farm, then   
   everything would have the same MAC address.   
      
   Lars M. Hansen   
   http://www.hansenonline.net   
   (replace 'badnews' with 'news' in e-mail address)   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)