Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

NAT process for self-originated traffic

Jump to solution

Hi,

Does the traffic generated by the Security Gateways gets NATted or is NAT only applied to traffic traversing the appliances? 

0 Kudos
1 Solution

Accepted Solutions
Highlighted

Only the source IP address of traffic originated from the gateway itself may be NATted, since that traffic will only pass through inspection points oO where source NAT operations occur.  Destination NAT occurs between iI which will never see or handle gateway-originated traffic.  Traffic originated from the gateway and traffic whose destination IP address is an interface of the gateway itself will never be handled by SecureXL, and will always go F2F/slowpath.

--

CheckMates Break Out Sessions Speaker

CPX 2019 Las Vegas & Vienna - Tuesday@13:30

R80.40 addendum for book "Max Power 2020" now available
for free download at http://www.maxpowerfirewalls.com

View solution in original post

4 Replies
Highlighted

Only the source IP address of traffic originated from the gateway itself may be NATted, since that traffic will only pass through inspection points oO where source NAT operations occur.  Destination NAT occurs between iI which will never see or handle gateway-originated traffic.  Traffic originated from the gateway and traffic whose destination IP address is an interface of the gateway itself will never be handled by SecureXL, and will always go F2F/slowpath.

--

CheckMates Break Out Sessions Speaker

CPX 2019 Las Vegas & Vienna - Tuesday@13:30

R80.40 addendum for book "Max Power 2020" now available
for free download at http://www.maxpowerfirewalls.com

View solution in original post

Highlighted
Admin
Admin

While that makes sense, I don't think I knew that.

0 Kudos
Highlighted

Although practice learns this does not work on Embedded GAIA.

Regards, Maarten
0 Kudos
Highlighted

That is exactly what I was looking for! Thanks!

0 Kudos