Hi again, I finally got it to work with FP3 also. I thought I share it with you all if anyone else face the same problem.
I still have static NAT for my management server. To solve my problem I defined another Checkpoint Host object with the IP of my static NAT translated address (public address). I defined it as a secondary management server and as a log server. Then on my remote site enforcement module object "Logs and Masters" -> "Masters" and "Logs and Masters" -> "Log Server" I removed my management server object and added my new management server object (with the public address). Now the enforcement is able to fetch policy and send logs. It sends it to the NATed address (public address) and when the packet arrives on the main site the enforcement modules there translate it and send it to the internal management server. Regards, Per Lindqvist ------------------------------ Date: Wed, 2 Apr 2003 16:20:40 +0200 From: Lindqvist Per <[EMAIL PROTECTED]> Subject: Manage other sites form a management with private IP adress Hi, What to do if the management server has a private IP-address that's need to be NATed and want to manage enforcement modules at other sites over the Internet? I'm facing such senario with NG FP3. With static NAT I get the SIC and SmartView Status to work, but I can't get policy installtions and logs to work correct. By reading the "Whats New" for FP4, beta 1, I saw that there was a new function in the GUI (a box to check) allowing this to work. I tested it in a lab and it did work. Is there still a way to solve it in FP3? TIA, Per Lindqvist ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
