Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
SebekW
New Contributor

Hair-pinning FortiGate 60E configuration for lan access to qnap server...

Good morning

 

I have a little problem. I have created Virtual IPs.

I don't know if these ports are good or not, the server Qnap runs on external IP or ports 8081 and 443 login is via www with secured ssl.

 

I created an ipv4 policy HaiPin_qnap

Incoming - internal

Outgoing - internal

source - all

destination - all 

service - all

Nat - disabled

 

Internal1_2 is first ISP

Internal2_2 is second ISP

At the end of the configuration it is shown on the internet: https://video.fortinet.com/products/fortigate/5.4/fortigate-hair-pinning-5-4

that the policy ID 2 is being edited

 

But it will be different for me, I don't know what policy ID to edit.

And I have one more question. I have over 20 virtual Ips, will it not collide with this edition of the firewall, or something will break ...

Employees complain to me that they cannot connect via ext. LAN network to external qnap server IP so I wanted to do it and I am a beginner Fortigate 60E pls help...

 

Best Regards

SW

1 REPLY 1
SebekW
New Contributor

hello

I did it, you can close :)

Just need to CLI edit the hairpin_qnap ID 23 "internal to internal" policy you made and enter set match-vip enable next end on it not on isp.

 

Greetings

SW

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors