Hello,
I am using a fortigate device:
wan connection interface:99.99.99.33
i have been given 2 additional addresses from my isp
1-i am not sure where i can add these 2 ip addresses as additional wan addresses in forti, i added them in ip pools
2- i have a webserver in dmz 192.168.100.150 listening on port 80
i need to create a rule that make login from the outside to this webserver from one of the additonal wan addresses with port 8080.
example when i type from outside: http://99.99.99.198:8080 it will show the web interface of the webserver on my dmz. please write me the steps because what i did didnt work.
This is my configuration
Policy And Projects > Ip pools > created 2 ip pool objects
name: ip_pool_1
type: overload
external ip range: 99.99.99.198 - 99.99.99.198
second one name ip_pool_2 external ip range 99.99.99.199- 99.99.99.199
then i created a virtual ip
name: web in
external ip address /range: 99.99.99.198-99.99.99.198
mapped ip address/range 192.168.100.150- 192.168.100.150
port forwarding enabled
protocol:tcp
external service port 8080-8080
map to port 80-80
then policy & objects > ipv4 policy > new policy
name: to_device
incoming interface: wan1
outgoing interface: dmz
source: all
destination: wen in ( the ip i created before)
schdeule: always
service: http
action: accept
nat: enabled ( also tried to disable it same thing)
ip pool configuration: use outgoing interface address
enable this policy: enabled
How do i solve this? Help!!
thanks
No comments:
Post a Comment