ThaiTran
asked on
Checkpoint Firewall IP Addresses?
I'm testing Checkpoint Firewall 4.1 at home. I got only one static IP address from my ISP. I'm trying to setup NAT with 192.168.0.x scope on my LAN for Internet Sharing. I put the valid IP address on the external Interface and 192.168.0.1 on my internal interface (I'm running Firewall and Management modules in the same NT box). Anything else do I need to setup on my Checkpoint to make NAT work? I'll appreciate very much if you can show me step by step because I'm new in this field. Thanks.
ASKER
I know I will need some rules setup. I did check the link but i still need step by step configuration.
Sorry, I don't have access to FW-1 right now to play with the instructions.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
If you have the original CD looking the documentation folder for the getting started guide.
On my version it has a tutorial starting on P87.
On my version it has a tutorial starting on P87.
As far as scope goes, I recommend defining all 256 up front as initial range, then, defining then unavailable ones (for whatever reason).
Justification is to facilitate growth, and self-document. The alternative of expanding a scope leads to a number of problems, among them S/W breaking and running into devices that have or had hardcoded addresses unknown to admin.
Justification is to facilitate growth, and self-document. The alternative of expanding a scope leads to a number of problems, among them S/W breaking and running into devices that have or had hardcoded addresses unknown to admin.
ASKER
I took the class and figured out how to make it work.. Thanks a lot for your comments.
Hi ThaiTran,
You've requested to delete this question, but its status has remained as 'Pending Delete' because one or more comments have been added. Normally, the only way to fully delete such a Question is to post a message to Community Support and ask for assistance.
EE is making a one-time database sweep to purge the Pending Delete Questions automatically. During this sweep:
ThaiTran -- To allow the deletion to proceed: Do nothing.
EXPERTS -- Please DON'T POST a comment except to contest this deletion.
In the future, please refer to https://www.experts-exchange.com/jsp/cmtyHelpDesk.jsp#8 for instruction on deleting questions.
DanRollins -- EE database cleanup volunteer
You've requested to delete this question, but its status has remained as 'Pending Delete' because one or more comments have been added. Normally, the only way to fully delete such a Question is to post a message to Community Support and ask for assistance.
EE is making a one-time database sweep to purge the Pending Delete Questions automatically. During this sweep:
ThaiTran -- To allow the deletion to proceed: Do nothing.
EXPERTS -- Please DON'T POST a comment except to contest this deletion.
In the future, please refer to https://www.experts-exchange.com/jsp/cmtyHelpDesk.jsp#8 for instruction on deleting questions.
DanRollins -- EE database cleanup volunteer
Seems to me the points should go to Droby10
Thanks to all, finalized.
Moondancer - EE Moderator
Moondancer - EE Moderator
Check out what PhoneBoy has to say on the subject at http://www.phoneboy.com/.