Firewall Port forwarding rules
IX20 User Guide
941
(config firewall dnat 0)> port port
(config firewall dnat 0)>
7. Set the typeof internet protocol .
(config firewall dnat 0)> protocol value
(config firewall dnat 0)>
Network connectionswill only beforwarded if they match the selected protocol. Allowed
values are custom, tcp, tcpudp, or upd. Thedefault is tcp.
8. Set the IPaddress of the server to which traffic should be forwarded:
n
For IPv4 addresses:
(config firewall dnat 0)> to_address ip-address
(config firewall dnat 0)>
n
For IPv6 addresses:
(config firewall dnat 0)> to_address6 ip-address
(config firewall dnat 0)>
9. Set the public-facing port number(s) that network connectionsmust use for their traffic to be
forwarded.
(config firewall dnat 0)> to_port value
(config firewall dnat 0)>
where value is the port number, comma-separated list of port numbers, or range of port
numbers on the server to which traffic should be forwarded. For example, to forward traffic to
ports one, three, and fivethrough ten, enter 1, 3, 5-10.
10. (Optional) To create a white list of devices that are authorized to leverage this forwarding rule,
based on either the IPaddressor firewall zone, change to the acl node:
(config firewall dnat 0)> acl
(config firewall dnat 0 acl)>
n
To white list an IPaddress:
l
For IPv4 addresses:
(config firewall dnat 0 acl> add address end ip-address
(config firewall dnat 0 acl)>
l
For IPv6 addresses:
(config firewall dnat 0 acl> add address6 end ip-address
(config firewall dnat 0 acl)>
Repeat for each appropriate IPaddress.
n
To specify the firewall zonefor white listing:
(config firewall dnat 0 acl)> add zone end zone
To Next Page
Loading...
Need help?
General