Checkpoint NAT issue
Posted on 2005-03-11
I have a Checkpoint NG fwall and another trusted site is attempting to communicate with one of my internal servers over the internet. The internal server's internal IP 192.168.1.2 is natted to an internet IP. When a tracert is performed from the trusted site to the server's internet ip, it arrives through the CP fwall fine. However the the reply to the source from the fwall is not retranslated back to the internet IP..Instead it's a non routable ip...192.168.32.x - instead of the expected internet IP.
Suggestions to tshoot are appreciated