This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Fincher
Participant
‎2022-01-19 03:33 AM
Jump to solution

Allow bi-directional NAT

Hi all!

 

How i can setting's "Allow bi-directional NAT" on the each Gateway?

 

Or i can setting "Allow bi-directional NAT" only in Global Properties?

 

Thanks for help!

0 Kudos
1 Solution

Accepted Solutions
_Val_
Admin
Admin
‎2022-01-19 05:36 AM
In response to Fincher
Jump to solution

This is a third party guide, and yes, on the page 112 the remediation step for NAT is incorrect. 

This is how it looks in SmartConsole: 

Screenshot 2022-01-19 at 14.32.10.png

So the Remediation Steps should be:

SmartConsole / Menu / Global Properties / NAT - Network Address Translation / bla-bla


View solution in original post

0 Kudos
6 Replies
_Val_
Admin
Admin
‎2022-01-19 04:50 AM
Jump to solution

Global Properties only. Why?

0 Kudos
Fincher
Participant
‎2022-01-19 04:57 AM
In response to _Val_
Jump to solution

Because we have CIS - CheckPoint firewall benchmark, and in this document we have this requirment:

Remediation:
Go to the following path and Configured the Allow bi-directional NAT.
SmartConsole -> Gateways & Servers -> select each Gateway -> NAT Network Address Translation -> Unchecked the Allow bi-directional NAT
 
I attach this file.
 
Requirment 3.18 Ensure Allow bi-directional NAT is enabled (Automated)
Preview file
1547 KB
0 Kudos
_Val_
Admin
Admin
‎2022-01-19 05:06 AM
In response to Fincher
Jump to solution

The document says, bi-directional NAT should be enabled.

It is actually already enabled by default in Global Properties. So I am asking again, what exactly are you trying to achieve here? Check it is indeed the case? Or something else?

0 Kudos
Fincher
Participant
‎2022-01-19 05:14 AM
In response to _Val_
Jump to solution

I'm trying to figure out how to properly set up bi-directional NAT. Because the remediation says to enable bi-directional NAT on each gateway. But this setting is not in the NAT settings on the gateways. It turns out the document gives false information?

0 Kudos
_Val_
Admin
Admin
‎2022-01-19 05:36 AM
In response to Fincher
Jump to solution

This is a third party guide, and yes, on the page 112 the remediation step for NAT is incorrect. 

This is how it looks in SmartConsole: 

Screenshot 2022-01-19 at 14.32.10.png

So the Remediation Steps should be:

SmartConsole / Menu / Global Properties / NAT - Network Address Translation / bla-bla


0 Kudos
Fincher
Participant
‎2022-01-19 05:38 AM
In response to _Val_
Jump to solution

Thanks a lot!

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events