Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Emomorfarn
Explorer

Static nat external traffic to internal server

Hi,

I have a lab enviroment at home cause im trying to learn checkpoint. And im stuck at trying to NAT external inbound traffic to my internal host.

 

I've tried manual static NAT rules & Automatic static NAT with my external IP as a object and put my internal web server as the IP to translate too. I can see in my logs that the traffic hits my external IP and gets allowed on the ports which i have allowed but i dont see any hits whatsoever on my NAT rule.

What am i doing wrong?

 

nat.PNG


nat.PNG

nat.PNG

0 Kudos
3 Replies
Sorin_Gogean
Advisor

hey,

 

I had no problem setting a NAT so traffic to certain Public IP would end up to an Internal machine . 

And all traffic from that Internal machine would be HIDE under the Public IP . 

The Public IP is not the same public IP of the firewall !!!!!

 

Thank you,

0 Kudos
Emomorfarn
Explorer

Im not sure that im following your Sorin, im talking about external to internal 1-1 NAT. 

"The Public IP is not the same public IP of the firewall !!!!!" - Can you explain this further?

0 Kudos
PhoneBoy
Admin
Admin

You should create the object in terms of the internal IP (where a host has that IP) and specify the external IP you want it to appear as.
This is how the automatic NAT rules work.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events