This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
IldarSultanov
Explorer
‎2022-05-17 11:53 PM

One IP address from Network on Cluster and NAT

Hello.

We have Cluster with CheckPoint 12600(R77.30). Cluster in Hight Availabilitity mode. And we need to connect to network with subnet 10.1.1.116/30. So, one address 117 configureied to Checkpoint Cluster, other 118 to Gateway to remote network. So I was read this article https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut... 

And then I configuried on my nodes interfaces from Network 192.168.0.116/30 and on topology configuried Cluster Interface 10.1.1.117. Then I configuried static routes like this:

10.1.1.116 masklen 30 gateway bond0.997 scopelocal;

172.16.0.1 masklen 32 gateway 10.1.1.118;

I created manual rule for internal network like this:

src: localnet dst: 172.16.0.1 - translate src: 10.1.1.116

src: localnet dst: 10.1.1.116 - translate src: 10.1.1.116

But it is not working - icmp did not answer to this hosts. In logs I can see accepted messgages and in xltsrc i can see NATed address.

How Can I find where is problem?

0 Kudos
1 Reply
G_W_Albrecht
Legend
Legend
‎2022-05-18 04:48 AM

R77.30 is out of support since September 2019, and the 12600 has only one more month of Support left - so i wonder what you are trying to achieve here as HW/SW is very out of time...

CCSE CCTE SMB Specialist
0 Kudos