Hide-NAT over IPSEC VPN Tunnel

nick_patchett Posts: 1
First Anniversary
edited April 2021 in Security

I've got a site-to-site IPSEC tunnel running between my USG40 and a Checkpoint firewall managed by an external supplier. They want me to use a feature called Hide-NAT - https://www.checkpoint.com/smb/help/utm1/8.2/7058.htm

So basically when any traffic from the internal LAN subnet destined for the server at the remote end of the VPN tunnel gets translated so at the far side it presents as the Public WAN IP address.

Is this possible? I've tried various SNAT and Destination NAT settings without much success.

All Replies

Security Highlight