Virtual IP address
The company has an web server on the internal network that needs to be accessed from the Internet.
• The internal IP address is 192.168.50.37
• The external IP address is 256.85.94.60 (for example use only. Not a valid IP address)
• The external IP address is assigned by ISP "A" on WAN1
• The port that needs to be mapped is 80
Go to Firewall Objects > Virtual IP> Virtual IP and select Create New.
Fill out the fields with the following information.
Field | Value |
Name | Web1-VIP |
Comments | Virtual IP for the Forum Webserver |
Color | <optional> |
External Interface | wan1 |
Type | (This field is only changeable in the CLI |
Source Address Filter | <leave blank or default setting> |
External IP Address/Range | 256.85.94.60 |
Mapped IP Address/Range | 192.168.50.37 |
Port Forward | enabled |
Protocol | TCP |
External Service Port | 80 |
Map to Port | 80 |
Select OK.
Enter the following CLI command:
config firewall vip
edit Web1-VIP
set comment “Virtual IP for the Forum Webserver”
set extintf wan1
set extip 256.85.94.60
set mappedip 192.168.50.37
set portforward enable
set protocol tcp
set extport 80
set mapped port 80
end
end
To verify that the category was added correctly:
Go to Firewall Objects > Virtual IP> Virtual IP. Check that the virtual IP address has been added to the list and that it is correct.
Enter the following CLI command:
config firewall vip
edit <the name of the vip that you wish to verify>
show full-configuration