O'Reilly logo

Essential Check Point™ FireWall-1® NG: An Installation, Configuration, and Troubleshooting Guide by Dameon D. Welch-Abernathy

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

How NAT Works in FireWall-1

NAT is configured via the Address Translation tab in the Security Policy Editor. Two types of rules will show up here: manual rules, created by the administrator, and automatic rules that are created when NAT is configured on individual workstation, network, and address range objects. My personal preference is for manual rules because of the control you have over when these rules might apply.

If a packet does not match any rule in the address translation rules, the packet is not translated. If a packet does match a rule, the packet is translated, and no further processing occurs unless the “Allow bi-directional NAT” property in the NAT frame of the Global Properties section is enabled and automatic NAT rules exist. ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required