目录
1、 进入管理界面开启防火墙
1)防火墙设置
进入 SETTINGS->Routing & Firewall -> FIREWALL-Rules-WAN IN
点CREATE NEW RULE
2)配置放行端口
Action 选 Accept
Protocol 选 TCP
DESTINATION->Port Group->CREATE PORT GROUP
其他全部默认如下图:
2、路由设置
1)进入SETTINGS->Site
查看DEVICE AUTHENTICATION
确保 Enable SSH authentication 已经开启
2)用SSH工具连接路由器
开启80端口
输入命令行
configure
进入设置模式,然后按照顺序输入下面的命令:
set service nat rule 4000 description "WAN2 tcp 80"
set service nat rule 4000 destination address 192.168.98.60
set service nat rule 4000 destination port 80
set service nat rule 4000 inbound-interface eth2
set service nat rule 4000 inside-address address 192.168.0.75
set service nat rule 4000 inside-address port 80
set service nat rule 4000 protocol tcp
set service nat rule 4000 type destination
commit;exit
开启443端口
configure
set service nat rule 4001 description "WAN2 tcp 443"
set service nat rule 4001 destination address 192.168.98.60
set service nat rule 4001 destination port 443
set service nat rule 4001 inbound-interface eth2
set service nat rule 4001 inside-address address 192.168.0.75
set service nat rule 4001 inside-address port 443
set service nat rule 4001 protocol tcp
set service nat rule 4001 type destination
commit;exit
测试正常后记得保存设置
configure
save