Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
douglas1942
New Contributor

Converting ports without IP change ?

Hello, I am trying to convert incoming port 22 to 2222 with a VIP rule. However I want to keep the same external and internal IP address. The VIP will not accept this.

Is there any way to only convert incoming ports with the same address ?

2 REPLIES 2
Debbie_FTNT
Staff
Staff

Hey @douglas1942,

you can check this KB: https://community.fortinet.com/t5/No-tags-TKBs/Technical-Tip-how-to-set-port-translation-port-forwar...

Is that what you're looking for?

 

Cheers!

+++ Divide by Cucumber Error. Please Reinstall Universe and Reboot +++
pavankr5
Staff
Staff

Hello @douglas1942 

 

It sounds like you're trying to set up port forwarding using a VIP but you want to maintain the same external and internal IP addresses. 

If your VIP doesn't allow you to change the port number while keeping the same IP address, Instead of changing the incoming port, consider using a different external port for SSH altogether (e.g., port 2222) and leave the internal port at 22. This way, you won't need to perform any port translation.

 

Remember that whenever you make changes to your network configuration, especially involving port forwarding and SSH, test the behavior in closed environment. Let us know if you have any queries.

 

Thanks

Labels
Top Kudoed Authors