Seems like a pretty basic question, but been searching for days and still haven't found an answer.
I simply want to Source Nat / "Hide" traffic from certain internet IP addresses coming in via the external network. In this packet flow:
198.51.100.111 (Internet IP) ---> 203.0.113.222:8080 (Checkpoint External IP) ---> 10.10.10.111:80 Web server on internal network
The NAT Policy rule is written like so:
Original destination: 220.127.116.11
Original Service: HTTP_proxy
Translated source: = Original
Translated destination: 10.10.10.111
Translated Services: http
Usually the web server would see the source IP 198.51.100.111 on traffic from internet. I instead want it to see the Checkpoint's internal interface IP address of 10.10.10.1
What should be in the "Translated source" field for this to work?