|
Re: PB with NAT
2002-01-04 11:21:04
Stephen,
Thanks for your answer,
I ask this question because before installing my firewall on my map some of
my natted equipments where on my map without using CNAT.
But now that I put my Firewall in my seedfile the nated equipment have
disapeared and now they IP adresses appeared like interfaces.
So i thought there was a solution without using CNAT.
Cordialement.
Maxime TRANNOY
IGS - Network Delivery Support Center
Tel : +33 (0) 492 114 767
mailto:mtrannoy AT fr.ibm DOT com
Stephen
Hochstetler/Austin To: IBM NetView Discussion
<nv-l AT tkg DOT com>
/IBM@IBMUS cc:
Sent by: Subject: Re: [NV-L] PB with
NAT
owner-nv-l AT tkg DOT com
04-01-2002 16:36
Please respond to
IBM NetView
Discussion
Maxime,
Yes there is a solution to the problem. The problem is that the NAT
simply translates the header on the ICMP and SNMP packets coming back to
you. But SNMP packets that NetView is using also has addresses in the
payload of those packets. When NetView reads the MIB, it is getting IP
information in that MIB.
The solution is to install a CNAT (Comprehensive Network Address
Translator) between your NetView and NATed network. This is a Tivoli
product, you should be able to read about it on the web pages. It will
work WITH your firewall NAT. (It would also do the NAT for you if you
did not already have one).
There is a component of that product that installs on the NetView server so
that the server knows that these addresses are being translated.
Kind regards,
Stephen Hochstetler shochste AT us.ibm DOT com
International Technical Support Organization - Austin
Office - 512-436-8564 FAX - 512-436-8701
ITSO redbooks at http://www.redbooks.ibm.com
_________________________________________________________________________
NV-L List information and Archives: http://www.tkg.com/nv-l
|
|
|
