firewall : central-nat
 
central-nat
Use this command to create NAT rules as well as NAT mappings that are set up by the global firewall table. Multiple NAT rules can be added on a FortiGate nd these NAT rules can be used in firewall policies.
A Typical NAT rule consists of:
source ip address
original port number
translated ip address
translated port number
IP addresses can be single address or multiple addresses that are predefined with an IP pool. Similarly, port numbers can also be a single port or a range of ports.
Syntax
config firewall central-nat
edit <name_str>
set status {enable | disable}
set orig-addr <name_ip>
set nat-ippool <name_ip>
set orig-port <port_int>
set nat-port <port_int-port_int>
end
end
Variable
Description
Default
status {enable | disable}
Enable or disable central NAT rule
enable
orig-addr <name_ip>
Enter source ip address name
 
nat-ippool <name_ip>
Enter translated ip pool name for translated addresses
 
orig-port <port_int>
Enter port number of the source ip
0
nat-port <port_int-port_int>
Enter translated port or port range
0