I was recently debugging a problem using fw monitor and found something
interesting: the fw monitor captures were not showing any NAT occurring
even though the connection was definitely Hide NAT'd.
The capture shows all outbound having the original source address and
even shows the non-NAT'd address as the destination of the return
packets. This was for all Big-I, Little-I, Big-O and Little-O entries.
This was for https traffic on SecurePlatform running NGX(HFA_03).
Has anyone else seen this behavior?
John
IMPORTANT: The information contained in this electronic message and/or its
attachments is intended only for the use of the individual(s) named above and
may contain information that is privileged and/or confidential. If you are not
the intended recipient, please notify the sender immediately by reply and
immediately delete this message and all its attachments without making any
copies or distributions thereof. Any review, use, reproduction, disclosure or
dissemination of this message or any attachment by an unintended recipient is
strictly prohibited and may violate copyrights and/or other laws. Neither the
sender, his or her employer nor any of their respective affiliates makes any
warranties as to the completeness or accuracy of any of the information
contained herein or that this message or any of its attachments is free of
viruses.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
