Fortigate Port Forwarding

Hi Experts,

I have a webserver behind my fortigate 200b and I want to make port translation to the web.
I have done exact this manual

But it is not working, but on the sniffer I can see the packets.
Why I cannot see the webpage from outside ?
Eprs_AdminSystem ArchitectAsked:
Who is Participating?
myramuConnect With a Mentor Commented:

Can you confirm by referring the below article, your configuration is correct?

Good Luck!
Joey YungSenior Network EngineerCommented:
What is the sniffer result? Any "ack" reply on it?

Also, you can enable the logging of that policy, and trace the result from the logging

I assume gateway on web server is not FortiGate, because of this you can't access the page from internet. Can you enable nat on that VIP policy and verify?

Good Luck!
The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

Eprs_AdminSystem ArchitectAuthor Commented:
The sniffer comes out with ACK and SYN.
This should be fine right ?
Eprs_AdminSystem ArchitectAuthor Commented:
on the policy I can see send packets -> over 130 packets sent.
This is the incoming policy -> WAN-LAN
Joey YungConnect With a Mentor Senior Network EngineerCommented:
Alright, seems everything looks good. Better to check the event log to make sure the access is allowed. Did you try to access the webpage internally? Any other host based firewall on that web server?
Eprs_AdminSystem ArchitectAuthor Commented:
Yes the config was correct.
The website was working internally.

The problem was something with the external IP address.


Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.