Skip to main content

Create NAT rule

Step 1: In the Object Pane (F11) > find the object to SNAT > right-click and select Edit.

Userguide Checkpoint FPT NGFW 2022 60

Step 2: In the menu, select NAT > check Add automatic address translation rules > check Hide behind IP address > enter the SNAT IP > select the gateway to apply.

Userguide Checkpoint FPT NGFW 2022 61

Step 3: In the menu, select Security Policies (Ctrl + 2) > select Access Control > select NAT > verify the rule was created.

Userguide Checkpoint FPT NGFW 2022 62

Step 4: Install Policy.

Step 1: In the menu, select Security Policies (Ctrl + 2) > select Access Control > select NAT.

Userguide Checkpoint FPT NGFW 2022 63

Step 2: Click Add rule above / to top / to bottom to insert the rule at the appropriate position.

Userguide Checkpoint FPT NGFW 2022 64

Step 3: Configure the new rule:

Userguide Checkpoint FPT NGFW 2022 65

  • Name:

    Userguide Checkpoint FPT NGFW 2022 66

  • Original Source (source IP before NAT):

    Userguide Checkpoint FPT NGFW 2022 67

  • Original Destination (destination IP before NAT):

    Userguide Checkpoint FPT NGFW 2022 68

  • Original Services (service/port before NAT):

    Userguide Checkpoint FPT NGFW 2022 69

  • Translated Source (source IP after NAT):

    Userguide Checkpoint FPT NGFW 2022 70

Keep original source IP.

  • Translated Destination (destination IP after NAT):

    Userguide Checkpoint FPT NGFW 2022 71

  • Translated Services (service/port after NAT):

    Userguide Checkpoint FPT NGFW 2022 72

  • Install On (device containing the NAT rule):

    Userguide Checkpoint FPT NGFW 2022 73

DNAT rule after creation:

Userguide Checkpoint FPT NGFW 2022 74

Step 4: Create a firewall rule to allow the DNAT connection.

Userguide Checkpoint FPT NGFW 2022 75

Step 5: Install Policy.

Last updated on by Dang Tran