Created on 11-24-2021 02:49 AM Edited on 02-05-2024 08:53 AM By Stephen_G
Description | This article describeshow to use virtual IP with services enabled. |
Scope | |
Solution |
This example has one public external IP address and will be mapped with internal IP address. And specific service option enabled in VIP configuration. |
Configuration |
VIP Object configuration.
1) Go to Policy & Objects -> Virtual IPs and select 'Create New' -> Virtual IP.
2) Set VIP Type to IPv4.
3) Enter a unique name for the virtual IP and fill in the other fields.
4) Configure the fields in the Network section. For example:
5 )Enable Optional Filters and then enable Services.
6) In the Services field select '+' to display the Services pane.
7) In the Services pane select HTTPS,DNS.
8) Select 'OK '.
9) Apply the above virtual IP to the firewall policy. |
To create a virtual IP with services From CLI.
# config firewall vip
|
|
Policy configuration.
1) In Policy & Objects -> Firewall Policy and select 'Create New'.
|
|
To create a policy of virtual IP with services in the CLI.
# config firewall policy edit 1 |
|
The results are:
1) Access 10.5.59.66:443 from external network and FortiGate maps to 172.31.139.62:443 in internal network.
2) Access 10.5.59.66:53 from external network and FortiGate maps to 172.31.139.62:53 in internal network. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.