I too
have seen this behavior when using the Code_red resource setup that Checkpoint
offered. The port is also translated. The answer I was given is that
this is by design - when you use a resource the connection is proxied - all
connections that meet the "Match" criteria. Hope this
helps.
-----Original Message-----
From: Darren Brechman-Toussaint [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 21, 2001 7:00 PM
To: '[EMAIL PROTECTED]'
Subject: [FW1] URI Resource and NAT
From: Darren Brechman-Toussaint [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 21, 2001 7:00 PM
To: '[EMAIL PROTECTED]'
Subject: [FW1] URI Resource and NAT
We have just added a URI resource and approp rules to our rulebase to drop code red traffic. We have now noticed that the source address for http traffic destined for our web servers is being translated into the firewall's address before being sent to the web server.
This is only causing problems on our web sites that have IP addresses restrictions implementated.
Has anyone got any ideas on how to stop the address translation happening?
Thanks
Darren
