Hi,
I am trying to apply a Nat rule that only applies when the hosts went to
the Internet. My problem is that I can not negate a cell in the address
translation tab. I also tried to create a "Group with exclsuion" with
success but it is not possible to select this group in an address
translation rule.
My problem is that I need to NAT some hosts when they go to the Internet
but they should appear with their original IP when they communicate with
any other corporate network. I can not find the way to do that.
Sometimes I created "No-Nat" rules at top of the address translation tab
but this time that also does not work because there are several servers
from corporate networks which appear to that network with a Natted IP so I
can not just deactivate NAT (in fact I just need to deactivate the source
Nat because I want that the hosts appear to the servers with their
original IP).
The rule should be as following:
ORIGINAL PACKETS
TRANSLATED PACKETS
Source Destination Source Destination
NetWorkA Any excluding the known corporate networks Public IP
Original
... other custom and automatic nat rules ...
Thanks a lot in advance for any advice,
Eric Janz
Departamento de Sistemas
Grupo Barceló Viajes
C\ 16 de Julio, 75
07009 Polígono Son Castelló
Palma de Mallorca - Baleares
Tel.: +34 971 448030
Fax.: +34 971 436986
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
