Firewall Virtual IP Configuring virtual IPs
FortiGate Version 3.0 MR4 Administration Guide
01-30004-0203-20070102 257
Figure 150:Static NAT virtual IP for a single IP address example
To add a static NAT virtual IP for a single IP address
1 Go to Firewall > Virtual IP > Virtual IP.
2 Select Create New.
3 Use the following procedure to add a virtual IP that allows users on the Internet to
connect to a web server on the DMZ network. In our example the external
interface of the FortiGate unit is connected to the Internet and the dmz1 interface
is connected to the DMZ network.
Figure 151:Virtual IP options: static NAT virtual IP for a single IP address
4 Select OK.
Name simple_static_NAT
External Interface external
Type Static NAT
External IP
Address/Range
The Internet IP address of the web server.
The external IP address must be a static IP address obtained from
your ISP for your web server. This address must be a unique IP
address that is not used by another host and cannot be the same as
the IP address of the external interface the virtual IP will be using.
However, the external IP address must be routed to the selected
interface. The virtual IP address and the external IP address can be
on different subnets. When you add the virtual IP, the external
interface responds to ARP requests for the external IP address.
Map to IP/IP Range The IP address of the server on the internal network. Since there is
only one IP address, leave the second field blank.
To Next Page
Loading...
Need help?
General