Here is the trick Source dest proto nat_source nat_dest nat_proto 1.1.1.1 2.2.2.2 tcp/82 = original 2.3.4.5 tcp/80
So you can hide a web server behind another IP and specify one nated dest ip for each port or each couple source + port. Nicolas figaro -----Original Message----- From: SIBEL MEREY [mailto:[EMAIL PROTECTED] Sent: Tuesday, January 06, 2004 2:44 PM To: [EMAIL PROTECTED] Subject: Re: [FW-1] AW: [FW-1] Port Mapping? Hi, Thanks for your answer. I didn't define manuel nat-rule in the NAT-tab before. Can you explain some more please? >>> [EMAIL PROTECTED] 06.01.2004 14:05:01 >>> hi, yes this is possible. you can't do that with the NAT in the object's settings, you have to define manual nat-rules in the NAT-tab of your security-policy. cheers reinhard ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
