Hello, during my quest to convert over our previous hardware configuration, non Sophos, I am unsure how to handle this issue. With our current ISP we have been provided 3 static IP addresses. Our main designated static IP has been setup on Port 2, along with the PPPoE credentials, however most of the rules on our previous system are evaluating the incoming IP addresses, I assume. Let me try to give an example.
To access the web interface of our camera systems. External access, this x.x.x.x represents our static IP addresses, x.97 being our main IP.
Plant One Camera interface - https://x.x.x98:2009
Plant Two Camera interface- https://x.x.x.99:2009
PBX (local LAN, ports are using this addressing) x.x.x.98
IPSec VPN - x.x.x.97
I am not sure how to recreate this type of setup on this device. So you can see the person who setup the last firewall has setup rules that if it comes through this address its being directed to right device. Maybe someone could shed some light on possibly how I duplicate this type of setup in rules, do I simply enter the IP address in the business rule coming from client x.x.x.98 and so on?
Example rule on the Juniper:
rule VOIP4443 {
match {
destination-address x.x.x.98/32;
destination-port 4443;
}
then {
destination-nat pool VOIP443;
}
}
and then
pool VOIP443 {
address x.x.x.x/32 port 443; <- the ip address is the PBX on the LAN
}
Thank you
This thread was automatically locked due to age.