(2017-02-28)
You can adjust the nat(any,any) to be something like nat(DMZ,Outside) as appropriate if you want.
Problem
I have firewall with public IP 1.2.3.4. I need to expose ssh the private server 192.168.1.1 on IP 1.2.3.5 to the internet peer at 1.9.1.1/Solution
conf t object SERVER-NAT host 192.168.1.1 object INTERNETPEER host 1.9.1.1 access-list inbound_acl extended permit tcp object INTERNETPEER object SERVER-NAT eq ssh object SERVER-NAT nat (any,any) static 216.208.174.120 exit
no comments |
post comment
Virtual Dave Megaplex:
Home Page- This wiki's start page
- Send Feedback To Dave
Logged in Users: (0)
Recently Changed
start- FortiClient Error Codes
- Scan For Newly Added Disk
- dhparams Generation
- SSL Certificate Bundles
- Seconds Since Epoch to Local Time
- ufw
- Grow A LVM Partition
- Creating Users
- whoami
- list databases
- DH Selection For IPsec VPNs
- 2023
- 2022
- 2019
- 2018
- 2017
- 2011
- 2010
- 2008
- 2001
- 2000
- 1999
- 1991
- Fire Eater
- Custom '77 Dodge Van
- Bone Shaker
- Batmobile
- Fire Eater Wanted
- dvr-scan
Editing: snipsnap-help, Image Macro(Et auditum est, et idcirco ego nunc simulare)
This is a collection of techical information, much of it learned the hard way. Consider it a lab book or a /info directory. I doubt much of it will be of use to anyone else.