Thread: uni-directional nature of hide nat
View Single Post
  #1 (permalink)  
Old 2008-04-15
sebastan_bach sebastan_bach is offline
Senior Member
  
Join Date: 2005-10-12
Posts: 308
Rep Power: 3
sebastan_bach has an average reputation (10+)
Send a message via Yahoo to sebastan_bach
Default uni-directional nature of hide nat
hi all i have confiured hide nat on the network object to hide behind the gateway.

i have policies and all.

i have also put put a policy to permit from external network to internal network.

now i am trying to access the internal host on it;s actual ip address and it;s working.

is natting uni-directional in checkpoint.

cause in cisco or netscreen when we configure dynamic nat for internal hosts then from external networks u cannot reach the internal hosts on their actual addresses even though a policy permit it.

is this the way checkpoint dynamic natting works.

can someone pls confirm on this.

regards

sebastan
Reply With Quote