Rafal_N
Contributor

Incoming traffic inspection - GCP

Hi,

I'm starting working and getting to know CheckPoint in Cloud solutions so sorry for my question if it's obvious for Cloud Architecture.

Is it normal and only way that if we want to run service for internet users in some VCP and inspect traffic using CheckPoint we have to hide all internet behind CheckPoint adres (do the source NAT)??

sk114577:

No.Original
Source
Original
Destination
Original
Services
Translated
Source
Translated
Destination
Translated
Services
Install OnComment
1All_InternetLocalGatewayHTTP-8083H LocalGatewayS web2-internal-lbhttp* Policy Targets 

 

Doesn't bother web server/web app developer etc?  All other solutions works in that way?

Best regards,

Rafal

0 Kudos
1 Reply
PhoneBoy
Admin
Admin

To ensure the traffic goes through the Check Point gateway, some form of NAT is required.
Generally HIDE NAT is used.

0 Kudos