cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1519
Views
0
Helpful
3
Replies

Unable to NAT from New router

hardandeasy
Level 1
Level 1

Current set up is rv042 to checkpoint fw to external network. I am to replace rv042 with rv340. I already made the same config for rv340 (access policy, static routing). The problem: using the packet tracer of checkpoint fw, i noticed that the internal IP address using the rv340 is not translated (NAT) by the checkpoint fw when sending packets to external network thus my requests are blocked by the external network.

Do i need to delete my NAT config in checkpoint fw and recreat them again after connecting with the new router? Or what did i miss? TIA

3 Replies 3

balaji.bandi
Hall of Fame
Hall of Fame

As long as the IP remain the same you do not required to do anything on the Checkpoint FW side.

(other note have you replaced the RV042 with RV340 - or both are in the network ?)

 

can you post some logs to suggest better.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

I have replaced the rv042 with rv340. Rv042 is not anymore connected to the network. I will soon post the logs. An overview, Rv340 logs said something like FIREWALL PACKET DROP... but per Checkpoint FW trace, the was a traffic from rv340 to checkpoint, it was just not translated.

Please confirm your network topology as below correct

 

Internet -----Checkpoint FW ----RV042(OLD)--users

 

New

 

Internet -----Checkpoint FW ----RV340--users

 

I suggested to check the NAT Settings in RV340, if you done NAT based on RV WAN IP address, then you need to check RV Side you able to do NAT for user IP address.

 

For better understand what is the IP address each segment will give more picture how your network.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Review Cisco Networking for a $25 gift card