Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
ballu
Explorer

Why No-NAT rule is required to communicate between On-Prem to VPC (in GCP)

Hi,

In GCP we have our own VPC where we have Checkpoint in cluster state. There is a connectivity with our On-Prem environment via VPN on Direct connect.

While Communicating the resources behind the Checkpoint gateway from On-Prem we need to configure a No-NAT rule for it work. 

Why do we require a No-NAT rule in this scenario? 

 

Thanks,

Baljinder Singh Bimbh  

0 Kudos
2 Replies
Chris_Atkinson
Employee Employee
Employee

The obvious guess would be that your NAT policy isn't specific enough in other areas but is a little difficult to say without knowing the exact composition of the policy.

The other could be the implied inclusion of the Gateway address in the encryption domain could be causing a challenge.

CCSM R77/R80/ELITE
the_rock
Legend
Legend

I think if you sent us basic diagram with explanation of traffic flowing, it would certainly help.

Andy

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events