[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW-1] cant setup port mapping
Good day! I want to implement port-mapping: client connect to predetermined port on fw's internal interface, must be redirected to extrenal host:port address. Firewall use hiding NAT for local netowrk, and statis source/destination for some hosts. For sample: client: 10.1.1.2 external-host: 20.1.1.2 service: tcp-1234 firewall: internal 10.1.1.1, external 20.1.1.1 I suppose next configuration: 1. security rule: source destination service action log install on client fw-internal tcp-1234 accept Long gateways 2. NAT rule: Original Translated Source Destination Service Source Destination Service client fw-internal tcp-1234 fw-external (hidden) external-host =original It isn't enough? How can I add second rule for backward outside-to-inside data transmission for dynamic (in fw-external) port? Thank you! Denis Barmenkov ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|