Skip to main content

Create NAT rule

Step 1: In the Object Pane (F11) > find the object to SNAT > right-click and select Edit.

Userguide Checkpoint FPT NGFW 2022 60

Step 2: In the menu, select NAT > check Add automatic address translation rules > check Hide behind IP address > enter the SNAT IP > select the gateway to apply.

Userguide Checkpoint FPT NGFW 2022 61

Step 3: In the menu, select Security Policies (Ctrl + 2) > select Access Control > select NAT > verify the rule was created.

Userguide Checkpoint FPT NGFW 2022 62

Step 4: Install Policy.

Step 1: In the menu, select Security Policies (Ctrl + 2) > select Access Control > select NAT.

Userguide Checkpoint FPT NGFW 2022 63

Step 2: Click Add rule above / to top / to bottom to insert the rule at the appropriate position.

Userguide Checkpoint FPT NGFW 2022 64

Step 3: Configure the new rule:

Userguide Checkpoint FPT NGFW 2022 65

  • Name: Userguide Checkpoint FPT NGFW 2022 66
  • Original Source (source IP before NAT): Userguide Checkpoint FPT NGFW 2022 67
  • Original Destination (destination IP before NAT): Userguide Checkpoint FPT NGFW 2022 68
  • Original Services (service/port before NAT): Userguide Checkpoint FPT NGFW 2022 69
  • Translated Source (source IP after NAT): Userguide Checkpoint FPT NGFW 2022 70

Keep original source IP.

  • Translated Destination (destination IP after NAT): Userguide Checkpoint FPT NGFW 2022 71
  • Translated Services (service/port after NAT): Userguide Checkpoint FPT NGFW 2022 72
  • Install On (device containing the NAT rule): Userguide Checkpoint FPT NGFW 2022 73

DNAT rule after creation:

Userguide Checkpoint FPT NGFW 2022 74

Step 4: Create a firewall rule to allow the DNAT connection.

Userguide Checkpoint FPT NGFW 2022 75

Step 5: Install Policy.

Last updated on by Dang Tran