Checkpoint firewall D-Nat Services configuration

From Notes_Wiki

Home > Enterprise security devices or applications > Checkpoint Firewall > Checkpoint firewall D-Nat Services configuration

D-NAT Configuration

Create a New Service (under "Service" menu)

  1. Go to the Service tab.
  2. Click on NEW to create a new service.

Configure Service Details (under "Other Server" window)

  1. In the window that opens, click on Other Server.
  2. Enter the Protocol Type (e.g., TCP/UDP).
  3. Enter the appropriate Port Number.
  4. Click on Next.

Define Server Object (under Server Settings)

  1. Enter the Server Name and IP Address.
  2. Check the option Allow DNS server to resolve this object name.
  3. Check the option Exclude from DHCP service.
  4. Click on Next.

Configure Access Settings (under Access Settings screen)

  1. Select All zones (Including the Internet).
  2. Check the option Allow access to the server using ICMP.
  3. Check the box Log Blocked Connections.
  4. Check the box Log Accepted Connections.
  5. Click on Next.

Configure Port Forwarding/NAT (under NAT Settings)

  1. Select Hide Gateway (Port forwarding).
  2. Enter the desired port in the Redirect From Port field.
  3. Select the checkbox Force translated traffic to return to the gateway.
  4. Click on Finish.

View Created NAT Policy (under NAT Menu)

  1. The NAT policy will be created automatically after service creation.
  2. To view NAT policies:
    1. Click on the NAT tab.
    2. Click on View NAT Rules to see all configured NAT rules.

Home > Enterprise security devices or applications > Checkpoint Firewall > Checkpoint firewall D-Nat Services configuration