Checkpoint Automatic NAT vs Manual NAT
NAT (Network Address Translation) is configured in CP firewall in two ways:
Manual or Automatic Automatic NAT To configure the automatic NAT, the SERVER object properties has a NAT section.
Node-----> General Properties--------> NAT----------> Check the box (Add Automatic address Translation)
So for example, if we want our host with internal private IP 192.168.75.4 to be published o the Internet with public IP 172.16.2.4:
(I we only wanted to apply outbound IP masquerading, we should have applied hide NAT type.
In this example, we are also trying to publish to Internet to receive incoming connections, so static NAT type.) This NAT configuration automatically performs 2 actions: 1. Creation of the corresponding NAT rule Original Packet