Firewall-1
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [FW-1] NAT on FP2 behaving abnormal!

from Thorsten Behrens [Permanent Link]
Subject: Re: [FW-1] NAT on FP2 behaving abnormal!
From: Thorsten Behrens <thorsten.behrens AT INTEGRALIS DOT COM>
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date: Fri, 19 Nov 2004 09:49:52 -0500 
You need to turn on "allow bi-directional NAT".

If that still doesn't work, your NAT rules are either not correct, or you have 
run into an issue with FP2. Given that FP2 is essentially dead these days, as 
far as development support goes, a move to R55 is highly -- most highly -- 
recommended.

Regards

Thorsten Behrens
Senior Security Engineer
CCMSE CCSE+ CCNA CNE

INTEGRALIS
Your Trusted Security Partner

111 Founders Plaza
13th Floor
East Hartford, CT 06108
USA
Tel: +1 860 291 0851 x 2244
Fax: +1 860 291 0847
thorsten.behrens AT integralis DOT com

www.integralis.com



> -----Original Message-----
> From: Mailing list for discussion of Firewall-1
> [mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM]On Behalf
> Of Richard
> Sent: Thursday, November 18, 2004 6:48 PM
> To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
> Subject: [FW-1] NAT on FP2 behaving abnormal!
>
>
> Hi List,
>
> We have two firewalls NG-FP2, setup as external and internal. Each
> firewall will only translate either the source or destination address
> and not both. No matter how we write the nat rules this seems to
> happen.


Please note that:

1. This e-mail may constitute privileged information. If you are not the 
intended recipient, you have received this confidential email and any 
attachments transmitted with it in error and you must not disclose, copy, 
circulate or in any other way use or rely on this information.
2. E-mails to and from the company are monitored for operational reasons and in 
accordance with lawful business practices.
3. The contents of this email are those of the individual and do not 
necessarily represent the views of the company.
4. The company does not conclude contracts by email and all negotiations are 
subject to contract.
5. The company accepts no responsibility once an e-mail and any attachments is 
sent.

http://www.integralis.com

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [FW-1] How do I define Encryption Domain of "ANY", Thorsten Behrens
Next by Date:  [FW-1] Using SecureClient Office Mode through a D-Link Router, Kalpesh Patel
Previous by Thread:  [FW-1] NAT on FP2 behaving abnormal!, Richard
Next by Thread:  Re: [FW-1] Cluster Synchronization is not working, Kim, Cameron
Indexes:  [Date] [Thread] [Top] [All Lists]