Try putting in a manual nat rule that says:
Internal_Nets Internal_Nets Any ||
Original Original Any
Where Internal_Nets is a group containing the networks on ports 2,3, and 4.
Dan
At 10:27 AM 6/14/00 -0600, [EMAIL PROTECTED] wrote:
>I have the following networks/interfaces
>
>1-external interface (real IP)
>2-DMZ Public (real IP)
>3-DMZ Private (real IP)
>4-Internal Network (10.0.0.0)
>
>I am using 'hide' for all address on the 4 network but these are getting
>translated on the DMZ's also.
>How can I move the translation to activate on the 1 interface ONLY for the
>internal network?
>In other words how can I get my internal machines to get to the DMZ's without
>being NAT'ed?
>
>Paul
>---------------------------------------------------------------------------
>-----------------
>
>C. Paul Simons
>Corporate Network Services
>IHS Energy Group, Englewood, CO.
>
>Main: +1 303 736 3000
>Direct: +1 303 736 3451
>Fax: +1 303 736 3860
>Mobile: +1 303 748 5242
>
>
>
>
>===========================================================================
>=====
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
>===========================================================================
>=====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
