Checkpoint firewall D-Nat Services configuration
From Notes_Wiki
Home > Enterprise security devices or applications > Checkpoint Firewall > Checkpoint firewall D-Nat Services configuration
D-NAT Configuration
- Go to the Service tab.
- Click on NEW to create a new service.
Configure Service Details (under "Other Server" window)
- In the window that opens, click on Other Server.
- Enter the Protocol Type (e.g., TCP/UDP).
- Enter the appropriate Port Number.
- Click on Next.
Define Server Object (under Server Settings)
- Enter the Server Name and IP Address.
- Check the option Allow DNS server to resolve this object name.
- Check the option Exclude from DHCP service.
- Click on Next.
Configure Access Settings (under Access Settings screen)
- Select All zones (Including the Internet).
- Check the option Allow access to the server using ICMP.
- Check the box Log Blocked Connections.
- Check the box Log Accepted Connections.
- Click on Next.
Configure Port Forwarding/NAT (under NAT Settings)
- Select Hide Gateway (Port forwarding).
- Enter the desired port in the Redirect From Port field.
- Select the checkbox Force translated traffic to return to the gateway.
- Click on Finish.
View Created NAT Policy (under NAT Menu)
- The NAT policy will be created automatically after service creation.
- To view NAT policies:
- Click on the NAT tab.
- Click on View NAT Rules to see all configured NAT rules.
Home > Enterprise security devices or applications > Checkpoint Firewall > Checkpoint firewall D-Nat Services configuration