I have v18 running on an xg210.
I have DNAT working fine using server assistant in the firewall rule setup for some ports 80, 443, etc just fine.
I want to build a new service say port 7022 on the public IP to port 22 on the inside, so as not to advertise port 22 to the internet.
I also have it locked down to only the source IP of the far end user trying to do some SFTP delivery on port 22.
The firewall and reflexive/main firewall rule builds ok but it is only doing port 7022 outside to inside.
If in the nat setup I set it to port 22/ssh on the inside translated service, it says the original and translated do not match, and does not let me apply.
port 7022 is the SFTP-AP-PORT.
SFTP-HOST is in the inside 10. IP of the server.
I have 2 public IP's for destination it might be coming in to, load balanced.
This thread was automatically locked due to age.
