Monday, February 19, 2018
FortigatePortForwarding
//refer http://cookbook.fortinet.com/using-virtual-ips-configure-port-forwarding-54/
Go to Policy & Objects > Virtual IPs > Create New > Virtual IP:
name = js_deobfu_statistics
External IP Address/Range = 172.17.71.216
Mapped IP Address/Range = 192.168.1.12
Enable Port Forwarding and add a VIP for TCP port 80
Adding VIPs to a VIP group//as we may add 21, 22 mappings
Go to Policy & Objects > Virtual IPs > Create New > Virtual IP Group.
in this example, webservers group. Under Members, include all VIPs(js_deobfu_statistics) previously created.
Go to Policy and Objects . IPv4 Policy and create a security policy allowing access to a server behind the firewall:
name = PortForwarding
Outgoing Interface = internal
Source = all
Destination Address = webservers
NAT = disabled // so that the server sees the original source addresses of the packets it receives.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment