You're reading from Check Point Firewall Administration R81.10+ A practical guide to Check Point firewall deployment and administration

Product type Paperback

Published in Aug 2022

Publisher Packt

ISBN-13 9781801072717

Length 654 pages

Edition 1st Edition

Concepts

Network Security

Author (1):

Vladimir Yakovlev

View More author details

Table of Contents (21) Chapters

Preface

1. Part 1: Introduction to Check Point, Network Topology, and Firewalls in Your Infrastructure and Lab

2. Chapter 1: Introduction to Check Point Firewalls and Threat Prevention Products FREE CHAPTER

3. Chapter 2: Common Deployment Scenarios and Network Segmentation

4. Chapter 3: Building a Check Point Lab Environment – Part 1

5. Chapter 4: Building a Check Point Lab Environment – Part 2

6. Part 2: Introduction to Gaia, Check Point Management Interfaces, Objects, and NAT

7. Chapter 5: Gaia OS, the First Time Configuration Wizard, and an Introduction to the Gaia Portal (WebUI)

8. Chapter 6: Check Point Gaia Command-Line Interface; Backup and Recovery Methods; CPUSE

9. Chapter 7: SmartConsole – Familiarization and Navigation

10. Chapter 8: Introduction to Policies, Layers, and Rules

11. Chapter 9: Working with Objects – ICA, SIC, Managed, Static, and Variable Objects

12. Chapter 10: Working with Network Address Translation

13. Part 3: Introduction to Practical Administration for Achieving Common Objectives

14. Chapter 11: Building Your First Policy

15. Chapter 12: Configuring Site-to-Site and Remote Access VPNs

16. Chapter 13: Introduction to Logging and SmartEvent

17. Chapter 14: Working with ClusterXL High Availability

18. Chapter 15: Performing Basic Troubleshooting

19. Other Books You May Enjoy

Appendix: Licensing

NAT logging

NAT is logged in rules where Log Generation | Per Connection are enabled. As per the recommendations made in Chapter 8, Introduction to Policies, Layers, and Rules, this should be the default setting for the firewall-only rules.

The NAT portion of the log card is really easy to understand, but I have seen repeated questions in forums regarding these two fields: NAT Rule Number and NAT Additional Rule Number.

To illustrate, let’s take a look at the following log card:

Figure 10.29 – The NAT Rule Number and NAT Additional Rule Number log fields

In the preceding screenshot, we can see the following:

Traffic is accepted from host 10.10.10.21 [1] to host 200.100.0.5 [2].
The translated source IP is 10.30.30.1 [3], which belongs to one of the virtual IPs of our cluster, and the translated destination is 10.30.30.5 [4].
We can see that NAT Rule Number is 4 [5] and NAT Additional Rule Number is 9 [6].

This log...

The rest of the chapter is locked

You're reading from Check Point Firewall Administration R81.10+ A practical guide to Check Point firewall deployment and administration

Table of Contents (21) Chapters

NAT logging

Authors (1)

Personalised recommendations for you

You're reading from Check Point Firewall Administration R81.10+ A practical guide to Check Point firewall deployment and administration

Table of Contents (21) Chapters

NAT logging

Unlock this book and the full library FREE for 7 days

Authors (1)

Personalised recommendations for you