Problem with port forwarding

janpesek163 · ‎08-25-2025

Hi,

i would like to ask you.

I have FortiGate 61E 7.4.8 and i have public static IP.

In one of VLAN i have server with IP 10.0.0.3 and on this server webserver are running on port 8123.

From internal LAN or any internal VLANs i can access to this server.

But from public IP, its not possible to access to this server.

I've created Virtual IP -

and firewall policy -

But with this VIP and FW rule its still not working.

But i have FortiGate web access via port 4443 and its working via public IP address correctly.

Can you help me ?

Thank you :)

funkylicious · ‎08-25-2025

does the server 10.0.0.3 have a default gateway with the interface of INFRA in your case?

i would enable NAT on the firewall policy in question and see if it solves your issue.

also, make sure that the HTTP Management port of the FortiGate isnt configured on port 80 in System > Settings > HTTP port

"jack of all trades, master of none"

janpesek163 · ‎08-25-2025

Thank you. I 've tried it but still not work :(

AEK · ‎08-25-2025

Hi Jan

In the firewall policy, set the service to TCP_8123 (create it first) instead of HTTP/HTTPS.

AEK

janpesek163 · ‎08-25-2025

Hi,

thank you for your reply. I've tried it but still not work :(

AEK · ‎08-25-2025

In the new service HA-8123, don't specify source port and IP Range. You specify only destination port 8123.

AEK

Toshi_Esumi · ‎08-25-2025

If you happen to have HTTP (TCP 80) access enabled on wan1, try disabling it.

Toshi

Nominate a Forum Post for Knowledge Article Creation