[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] question
Title: question I've read many many pages in the Checkpoint VPN-q / FW-1 Administration Guide about Static NAT as well as various websites and I must say I am completely confused by the whole process. Mainly due to hearing different people's accounts for how to set this up. My setup is on NT and is as follows: Firewall Machine - External 216...3 , Internal 10.10.10.1
The external interface has a gateway listed, the internal does not. In FW-1 I have configured a network object for my Firewall as well as my 2 networks.
My rules are as follows: Original packet ||| Translated Packet
Hosts on my internal LAN can route out to the outside world and show up as their translated IP.
However if I am on an external host and attempt to SSH into a box I have configured for Static NAT the request reaches only the gateway. In the logs it looks as if it does get translated back to the private address. I have tried adding static routes ( route add 216.xxx.xxx.4 10.10.10.4 )
If anyone can help me out with some clarification on this issue or help me see the aspect I am overlooking it would be greatly appreciated. Thanks
-----------------------------------------------------------------------
|