Greetings!
Darren Brechman-Toussaint schrieb:
> We have just added a URI resource and approp rules to our rulebase to
> drop code red traffic. We have now noticed that the source address for
> http traffic destined for our web servers is being translated into the
> firewall's address before being sent to the web server.
>
> Has anyone got any ideas on how to stop the address translation
> happening?
It seems that that is a known "beature" - anytime security servers are
used the
Checkpoint behaves like a proxy - with NAT having no effect. See the FAQ
articles:
* http://www.phoneboy.com/faq/0190.html
* http://www.phoneboy.com/faq/0049.html
As for a workaround I cite the FAQ: "There is no way around this."
Bye
Volker
--
Volker Tanger <[EMAIL PROTECTED]>
Wrangelstr. 100, 10997 Berlin, Germany
DiSCON GmbH - Internet Solutions
http://www.discon.de/
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
