06-27-2022 04:51 PM
Hi,
We have a VM-series running 10.1, with a number of hosts with public IP addresses. The hosts are running a common service (i.e. HTTPS on 443), however they need to be accessible from external on an alternate port (i.e. HTTPS 8443). As such, we need to translate the port but not the address.
Similar to our existing firewall (Checkpoint) I would ideally use Destination Address Translation, Static IP type and have the Translated Address set to 'original'. Otherwise I believe I need to create a separate NAT policy for each and every IP address in that network segment - something I am trying to avoid.
Any advice on ways to achieve this would be greatly appreciated.
Many thanks,
Glenn
06-28-2022 03:51 AM
Hi @gprinsen ,
'Set as original' isn't an option so that would be a feature request in this case. To request a new feature please reach out to your local sales rep so he can set it up for you. You can then add your vote to it and ask the community to add their vote as well.
Why wouldn't you use port 443 btw ?
Just curious what the use case would be forcing you to use a different port.
Cheers,
-Kiwi.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
