 Re: Firewall-on-a-stick (with NAT)?
You need to go through one interface and out the other to apply the security policy.
This could be a VLANned interface with the sub-interfaces as Check Point treats these as seperate interfaces. Each VLAN having it's own IP address. Whilst they are physically 1 interface Check Point sees each VLAN as a seperate interface, so you no longer have just one interface
However you could not have one interface with 1 IP address and that being the total interfaces and IP addresses. |