This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
jcs001
Participant
‎2019-04-06 12:30 AM

NAT not able to access from internal network

Hi,

I have a question about setting up NAT on checkpoint 450.

 

So after I used the wizard on "Active Devices", save as a machine to "server". I was able to connect to the server from external network. However, from within the network, I am unable to.

Here's some more of the settings I set:

Access - All Zones

NAT - Hide behind gateway.

 

Any pointers?

Thanks!

0 Kudos
11 Replies
PhoneBoy
Admin
Admin
‎2019-04-06 10:55 AM

I assume you mean a 750, which is an SMB appliance.

In your server object, did you check the option under Advanced?

27FF2240-067E-4BC2-BD77-90998E1D17E5.jpeg

jcs001
Participant
‎2019-04-06 12:36 PM
In response to PhoneBoy

Yes that was checked but still didn't work

0 Kudos
PhoneBoy
Admin
Admin
‎2019-04-06 04:33 PM
In response to jcs001

Have you done a tcpdump to see what the traffic looks like?

I suspect you'll have to get the TAC involved.

0 Kudos
jcs001
Participant
‎2019-04-08 11:57 PM
In response to PhoneBoy

Hi,

 

I think i figured it out. I think there's a UI bug somewhere.

If you create your server node from the "active device" page, I believe the routes are configured differently when you create the server node from the actual server page. After multiple attempts, if I create the server object from the actual server page, it works. 

Bug?

G_W_Albrecht
Legend Legend
Legend
‎2019-04-09 07:17 AM
In response to jcs001

How could you do that ? On my 730, Home > Monitoring > Active Devices has no option to add a server, and neither has Logs & Monitoring > Status > Active Devices ...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
PhoneBoy
Admin
Admin
‎2019-04-09 10:14 AM
In response to G_W_Albrecht

Right-click on the object in the Active Devices view, choose Save-As > Server.

Screen Shot 2019-04-09 at 10.13.38 AM.png

0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2019-04-10 04:43 AM
In response to PhoneBoy

I second that 😉
CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2019-04-11 12:09 AM
In response to PhoneBoy

@PhoneBoy wrote:

Right-click on the object in the Active Devices view, choose Save-As > Server.

Screen Shot 2019-04-09 at 10.13.38 AM.png

I see - i can not do that, also not from menue, as this is only possible for IPs without defined objects. Definitely a bug, this feature should make defining servers more handy but actually makes servers partly unusable...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
PhoneBoy
Admin
Admin
‎2019-04-11 08:26 AM
In response to G_W_Albrecht

It makes sense in some ways because in both cases, you are defining an object (one a host, another a server).
I suppose what would be a nice addition would be a way to convert from one to the other.
0 Kudos
PhoneBoy
Admin
Admin
‎2019-04-09 10:10 AM
In response to jcs001

Possibly, and you should engage the TAC with this.
G_W_Albrecht
Legend Legend
Legend
‎2019-04-11 12:06 AM
In response to jcs001

Do you have a response from TAC yet ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    In-Person

    Tue 18 Mar 2025 @ 09:30 AM (EET)

    CheckMates Live Greece
    In-Person

    Tue 25 Mar 2025 @ 09:00 AM (EDT)

    Canada In-Person Cloud Security with Hands-On CloudGuard Workshops!
    In-Person

    Tue 25 Mar 2025 @ 12:00 PM (MDT)

    Salt Lake City: CPX 2025 Recap
    In-Person

    Tue 08 Apr 2025 @ 12:00 PM (MDT)

    Denver: CPX 2025 Recap
    CheckMates Events
    Top