Solved

How to hide NAT certain hosts going to certain destinations on NGXR^)

Posted on 2009-05-13
1
723 Views
Last Modified: 2013-11-16
All i have certain inside hosts that need to directly access specific hosts on the internet, as i dont want internal hosts to have direct access to ht egeneral Internet (they have a controlled proxy server for that) i want to just hide specific hostes/ip ranges going only to these specific sites onthe internet, i have the external sites NATed to an internal address but i still need to nat theses specific hosts to hide behind the external interface when only goin to theses sites.I dont want to have theses hosts nated going out any other interface, i have 8 interfaces, one external (Internet) 2 semi trusted DMZ , and other fully trusted DMZ's aka WAN from remote offices. I was thinking a specific Manual NAT would do the trick but i cant sem to get checkpijt to accept that, is ther ea way to do what i am looking for, oh and i dont want to use NAT exception rules for intertnal traffic either as gets to messing and complicated for trouble shotting.
0
Comment
Question by:tul0rjs
1 Comment
 
LVL 14

Accepted Solution

by:
grimkin earned 500 total points
ID: 24382993
Hi there,

I'm not sure if i've understood correctly - a diagram would be appreciated - but it sounds like you are right with the manual NAT rules.

Create a dummy object for the objects to NAT to and then create the rule:

from: my_internal_node
to: certain_node
service:xyz
xlate src: dummy_node
dst: original
service: original

HTH
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
This Micro Tutorial will teach you how to censor certain areas of your screen. The example in this video will show a little boy's face being blurred. This will be demonstrated using Adobe Premiere Pro CS6.
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now