Checkpoint FW-1 3.0b on Sun Solaris 2.6
Got a question about NAT. We have a Sun server behind the firewall and
need ftp data to several public ftp servers. However, that Sun server has
its ftp service move to high ports 20020 and 20021, instead of the default
port 21 and 20. So, outbound ftp traffic from that server to public ftp
servers will be using 20021 and 20020. I am thinking to use NAT so that
traffic from that Sun service with TCP port 20021 would be NATed to 21, and
20020 would be NATed to 20. Something like this:
Original Src=a.a.a.a, Original Dest=any, Original Service=tcp-20021
Translated Src=original, Translated Dest=original, Translated Service=tcp-21
Original Src=a.a.a.a, Original Dest=any, Original Service=tcp-20020
Translated Src=original, Translated Dest=original, Translated Service=tcp-20
Would this work? Any issues I need to be awared of?
Thanks.
-raymond
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
