Hi Ajay
Look for a file named xlate.conf on $FWDIR/conf directory. On pre 4.1
versions it used to hold the NAT rules and if you upgrade to 4.1 it will
still be used fo sure. I have one 4.1 installation using it. The bad news
is that its not refleted on the NAT rules on the GUI so you never see that
are NAT rules in place. Just rename that file (xlate.conf) and make a
install rules with the GUI and the NAT rules will be removed. Then you
should also remove the extra rules you set to overcome them.
Robson Gomes
Medidata Inform�tica S.A.
55 21 25463734
O conte�do desta mensagem (e o de seus eventuais anexos) � de exclusivo
interesse do destinat�rio acima indicado e pode conter informa��o
confidencial e/ou propriet�ria, que n�o deve ser copiada ou divulgada sem o
consentimento expresso da Medidata Informatica S/A.. Em caso de recep��o
por pessoa diversa do destinat�rio, a mensagem e seus respectivos anexos
dever�o ser destru�dos imediatamente sob pena de responsabiliza��o por uso
indevido.
The contents of this message (and of its eventual enclosures) are intended
to the exclusive benefit of the addressee indicated above and may contain
confidential and/or proprietary information and may not be copied or
disseminated without express consent of Medidata Informatica S/A. In case
of unduly reception thereof by any other party than the addressee above,
this message and its enclosures shall be immediately destroyed. The use or
disclosure of the contents of this message and/or its enclosures will
become such other party liable for such action.
Ajay Mal <[EMAIL PROTECTED]>
Sent by: Mailing list for To: [EMAIL PROTECTED]
discussion of Firewall-1 cc:
<[EMAIL PROTECTED] Subject: [FW-1]
POINT.COM>
02/04/03 03:24
Please respond to Mailing list for
discussion of Firewall-1
Hi!
i've joined this list recently, and have a specific query for Checkpoint
ver
4.1
We've a management server managing 5 checkpoint servers(sUN) over WAN.
Lately i'm noticing that when we are making a new rule and do not put NAT
for an object (niether inside the object nor manual NAT rule) still while a
transaction happens, the object is getting NATed to some vague addresses,
which is inexplicable. For preventing this we are required to put a manual
NAT rule saying that keep the translated address for object as original.
Can anybody explain this.
Regards
Ajay
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
