[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] NAT Problem in CP-Firewall



Title: RE: [FW1] NAT Problem in CP-Firewall

You need to add a static route on your firewall for the translated address (205.148.243.3)to the next hop inside the firewall or to the internal ethernet port because before translation the firewall does internal routing.




-----Original Message-----
From: Jey Baskar [mailto:[email protected]]
Sent: Saturday, January 13, 2001 1:02 AM
To: [email protected]
Subject: [FW1] NAT Problem in CP-Firewall



Hello,

We have installed Checkpoint Firewall-1 in our environment. I am facing a problem of unable to PING to the NATted address.


10.1.3.15       205.148.243.2      205.148.243.1
HOSTA  -------  FIREWALL  -------- ROUTER ---------- INTERNET
 

I have a hostA 10.1.3.15 which is on the internal network. It can ping to the Firewall [205.148.243.2] and to the router [205.148.243.1]

without any problems.

On the Firewall I have static Address Translation for the 10.1.3.15  and set it as 205.148.243.3

The problem is I can PING to the firewall [205.148.243.2] successfully from the internal and external network but CANNOT ping to the static address [205.148.243.3] either from the internal nor from the external network. Even from the Firewall server, I CANNOT ping to the NATed address [205.148.243.3]

I have set the NAT and rules properly.

Any help to fix this problem will be greatly appreciated!

Thanks
Jey



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================