3 articles Checkpoint Firewall

Checkpoint Firewall NG hairpin NAT

See this article for NAT configuration. Hairpin NAT configuration: The above (see the NAT howto) all works very well if your 192.168.1.x hosts sit in a DMZ on the firewall, however! If you want to direct traffic to a host on the LAN segment, you need some additional NAT rule trickery. You need to create…

How do I create manual ARP (for inbound NAT) entries in Checkpoint?

Updated 11th July 2017 Manual ARP in Firewall 1 NG If you must use manual NAT rules on win 2000 (and later!), do the following: 1. Create c:\windows\fw1\R62\fw1\conf\local.arp file as per the format below. 2. Uncheck “Automatic Arp Configuration” in Global Properties 3. Check the setting under the Manual Nat settings in Global Properties. 4.…

How to redirect log files to another drive (Checkpoint) (Firewall NG)

I’m running VPN-1 UTM and this tricked worked fine. Looking at the registry, there are several keys under HKEY_LOCAL_MACHINE\SOFTWARE\CheckPoint\FW1\ which look to pertain to whichever version you have installed. Under the top level key HKEY_LOCAL_MACHINE\SOFTWARE\CheckPoint\FW1\ is a “CurrentVersion” String. Mine is “6.0” so I navigated to HKEY_LOCAL_MACHINE\SOFTWARE\CheckPoint\FW1\6.0 and created the “FWLOGDIR” string there, restarted the…