Fortinet firewall create rule to allow multiple internal IP's to go out using same external IP

We have a cloud based firewall provided by our MPLS provider. They recently moved from Cisco to Fortinet. We are given access through a web dashboard.

I knew how to to this with the cisco but not the fortinet. I'm trying to create a rule/policy where i can group a few internal IP's together where they go out and use the same external static IP.
LVL 2
msidnamAsked:
Who is Participating?
 
max_the_kingConnect With a Mentor Commented:
Hi,

1. create an object for each internal IP (for example host_192.168.1.101, host_192.168.1.102, etc.)

2. create a group and insert the objects created into step 1

3. create a NAT rule for that group to go to internet with the chosen public IP

hope this helps
max
0
 
msidnamAuthor Commented:
max_the_king,
I'm with you up until step 3. For me it only allows me to put a single IP with no choice to add the group i created with the 3 internal IP's.

i do get the option to create a VIP group, but where it says add members, its blank and even if i search for the group name i created it says nothing to display.
0
 
msidnamAuthor Commented:
Thanks for the help. Turns out they have a bug in the portal dashboard that I access and I can't delete certain things even though i am supposed to. I needed to delete all references to the current NAT and then add the IPs and groups like you said and make a new NAT with reference to the ippool of the external IP.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.