This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Blason_R
MVP Gold
MVP Gold
‎2021-10-22 10:44 PM

How do I NAT separate EPM server so that clients can connect over internet

Hi Team,

 

I have setup EPM R81 as a dedicated server while my perimeter firewalls are Check Point 6400 cluster with Magmt server. Now since I setup EPM server wondering how do I setup NAT so that clients connecting to EPM can connect over internet?

EPM server does not have a NAT option hence wondering what option should I apply? I do not have any Policy server.

 

TIA

Blason R

Thanks and Regards,
Blason R
CCSA,CCSE,CCCS
0 Kudos
5 Replies
Chris_Atkinson
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
‎2021-10-23 04:04 AM

Manual, static where needed.

There is a white paper here that describes an approach including NAT.

https://community.checkpoint.com/t5/Endpoint/White-Paper-R80-20-Endpoint-Policy-Server-in-DMZ-for-Ex...

CCSM R77/R80/ELITE
0 Kudos
Blason_R
MVP Gold
MVP Gold
‎2021-10-24 07:51 PM
In response to Chris_Atkinson

Agree and thanks for the paper - However is it mandatory that we need to have policy server to NAT the traffic? What if customer has not purchased a policy server license?

 

Thanks and Regards,
Blason R
CCSA,CCSE,CCCS
0 Kudos
Chris_Atkinson
MVP Gold CHKP MVP Gold CHKP
MVP Gold CHKP
‎2021-10-24 07:59 PM
In response to Blason_R

Not mandatory to my knowledge. Note that policy server licenses entitlements may already be covered depending on your EPM license, refer: sk61832

 

CCSM R77/R80/ELITE
0 Kudos
Blason_R
MVP Gold
MVP Gold
‎2021-10-26 11:51 PM
In response to Chris_Atkinson

Surprisingly - I followed that and I am on R81. However I am not seeing NAT tab in smart console for my policy server. Is something changed in R81?

Thanks and Regards,
Blason R
CCSA,CCSE,CCCS
0 Kudos
Blason_R
MVP Gold
MVP Gold
‎2021-10-27 12:45 AM
In response to Blason_R

This is really weird. NAT Tab is not appearing in my smart console. Is this a  bug or anything that needs to be activated?

Thanks and Regards,
Blason R
CCSA,CCSE,CCCS
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events