config firewall vip
edit "PublicServer"
set extip [public_ip-address]
set extintf "wan1"
set portforward enable
set mappedip "[server_ip-address]"
set extport [service_port]
set mappedport [service_port]
next
end
config firewall policy
edit [policy_ID]
set srcintf "Internal"
set dstintf "wan1"
set srcaddr "all"
set dstaddr "PublicServer"
set action accept
set schedule "always"
set service "[service]"
set nat enable
next
end
config router policy
edit 1
set input-device "Internal"
set src "[server_ip-address]/255.255.255.255"
set dst "[server_ip-address]/255.255.255.255"
set protocol 6
set start-port [service_port]
set end-port [service_port]
set gateway [wan1_DG]
set output-device "Internal"
next
end
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.