If you are network administrator, there are times when we need to open some port in our firewall to allows people accessing our website .CMS website such as Joomla or Drupal have certain port that need to be open (depending on the service that they use) before users can access it from external network. For this guide I am using FortiGate 200A as our example.
Step 1: Provide port details and related detail.
Make sure we have sufficient information before we can proceed to next step. Below is the example of information we need to prepare to open the website port.
Name: YourWebSiteName
Public IP: 122.129.x.x
Web Server IP: 10.8.1.33
Service Port that need to be open: 8080
Step 2: Create new Virtual IP with the designated port.
After you have collected all information that you need, then you can start configuring in firewall.
1. Go to Firewall Objects > Virtual IP > Virtual IP
2. Click Create New at the upper page.
3. Fill Up the information such as below :
Name: INTRANET-MYOBE --> your website name
External Interface: External --> your ext interface which connected to your firewall
Type: Static NAT
Source address Filter: Disabled
External IP address/Range: 122.129.x.x-122.129.x.x --> public ip of website
Mapped IP address/Range: 10.8.1.33-10.8.1.33 --> webserver IP add
Port Forwarding: Enabled
Protocol: TCP
External Service Port: 8080-8080 --> the port that need to be open
Map to Port: 8080-8080 --> same as above
4. Click OK for changes to take effects.
Step 3: Verify configuration.
1. Try accessing the website URL from external network. The website should be accessible by now.
No comments:
Post a Comment