Page tree

Welcome to FreeSoftwareServers Confluence Wiki

Skip to end of metadata
Go to start of metadata

Note : Rule # are whatever you want, its just a "label", so are firewall names (I think).

This translates port 5060 coming in on the public IP to the Private IP on port 5060, doing both tcp and udp.

configure
set nat destination rule 42 description SIP_FORWARD_TEST
set nat destination rule 42 destination address '173.12.182.125'
set nat destination rule 42 destination port 5060
set nat destination rule 42 inbound-interface 'eth5'
set nat destination rule 42 protocol tcp_udp
set nat destination rule 42 translation address '10.1.8.32'
set nat destination rule 42 translation port '5060'
commit
save

This allows the port through the firewall

set firewall name OUTSITE-TO-INSIDE rule 43 action accept 
set firewall name OUTSITE-TO-INSIDE rule 43 destination port 5060
set firewall name OUTSITE-TO-INSIDE rule 43 destination address 10.1.3.52
set firewall name OUTSITE-TO-INSIDE rule 43 protocol tcp_udp
commit
save

Check

show nat destination rules

show firewall name OUTSIDE-TO-INSIDE

 

 
  • No labels