Any Version of Checkpoint Showing Which NAT Rule Applied?

Any Version of Checkpoint Showing Which NAT Rule Applied?
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Networking Firewalls    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Any Version of Checkpoint Showing Which NAT Rule Applied? Will 12-14-2007
Posted by Will on December 14, 2007, 3:44 am
If you were  Registered and logged in, you could reply and use other advanced thread options
The Checkpoint Firewall-1 log shows which firewall rule is applied to any
traffic. Is there any version of Firewall-1 that will in addition show you
which address translation rule was applied to the same traffic?

Firewall-1 does show you the translated source and destination IPs and
ports, but that's only partially useful when trying to debug why / where a
translation is being done. Showing which translation rule is applied would
rapidly speed up debugging of translation configurations.

--
Will



Posted by mak on December 14, 2007, 5:24 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Will wrote:
> The Checkpoint Firewall-1 log shows which firewall rule is applied to any
> traffic. Is there any version of Firewall-1 that will in addition show you
> which address translation rule was applied to the same traffic?
>
> Firewall-1 does show you the translated source and destination IPs and
> ports, but that's only partially useful when trying to debug why / where a
> translation is being done. Showing which translation rule is applied would
> rapidly speed up debugging of translation configurations.
>

i don't know which version you have, but at least since R55 you can choose which
columns you want to see in smartview
tracker,
it's called "NAT rule number",

it's to the left of the "filter" symbol, a square with 3 fields sort of thingy

Similar ThreadsPosted
Checkpoint accept rip implied rule. July 20, 2004, 12:24 am
Optimizing rule base on Checkpoint Firewalls December 29, 2006, 7:17 am
Checkpoint version compatibility June 16, 2006, 11:36 am
Zonealarm / Pictures not showing December 28, 2004, 4:38 pm
Linksys Routers showing open UDP ports??? September 15, 2005, 6:07 pm
Win XP pgm showing i/o stats w/dial-up modem w/NAT router? June 12, 2006, 3:39 pm
[WallWatcher] Remote Name/Message field no longer showing POP3 server names March 26, 2005, 12:36 pm
Checkpoint - Deny traceroute through checkpoint firewall August 10, 2004, 3:27 pm
How to do a Stonesoft rule ? August 10, 2004, 9:41 am
Translation Rule October 15, 2005, 2:31 pm

The site map in XML format XML site map

Contact Us | Privacy Policy