 | ||
 NAT with <ANY> in Source Original Packet... | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2006-07-04 | |||
| |||
 NAT with <ANY> in Source Original Packet... Hi CP-Gurus! How can I do the someting like the following with CP and NAT? Original Packet: Source = <ANY> Destination = <official IP> -> Translated Packet: Source = <IP of FW-interface> Destination = <Hosts internal IP> Reason for this is: We providing two Firewalls. We want to move a DMZ form the first FW to the second FW. Traffic coming form the Internet over the first gateway should get into the moved DMZ behind the second gateway for a time (DNS reasons). I thought I can do this with NAT but the Verifier warns I have to leave the Source felid in the 'Translated Packet' section Original if there is <ANY> in the source of the 'Original Packet' section. Are there any tips how I can solve this? Regards Karsten  |
| 2006-07-04 | |||
| |||
| Re: NAT with <ANY> in Source Original Packet... Create an Address Range object to substitute the "Any" object in the manual Address Translation rule. An Address Range object includes all possible IP addresses 0.0.0.0 - 255.255.255.255 or use automatic NAT on your destination object(s) Cheerz, L. |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
