I have 3 interfaces on the BM. The DMZ interface has a Sonic Wall
hooked
with an IP address of 192.168.1.2 and is making a VPN Tunnel to the
Checkpoint firewall across the internet .
I have enabled UDP 500 , IP 50 , 51 on the BM
192.168.1.2 IP Address has been given a static NAT on the Public
interface
210.X>X>X .

Problem is that ( checked with sniffer ) the traffic from DMZ to
Public
interface is not NATTING and BM 3.6 is pumping out the IPSEC packets
with
source address of 192.168.1.2 into the internet , which will
obviously
never come back , suprisingly VPN tunnel is up .

Any ideas as to why BM cannot do the static nat between 192.168.1.2
and
210.X.X.X .


Thanks

Jaspreet