My usecase is pretty simple. I have an internal network onnected to XF-51 and an external network connected to XF-10
The internal is subnet 192.168.2.0/24 This network has devices with a web interface
The external subnet 192.168.100.0/24
I try to configure the firewall to port forward tcp (http) traffic from the external to the internal network. For instance incomming to the IP of XF-10 on port 8443 needs to be forwarded to 192.168.2.2 port 443
The confusion already starts from port naming shoudl it be XF-10, ETH0 or XF10. I think the latter is correct beacuse this is the name Linux reports.
I understand have to enable packet forwarding for both XF-10 & XF-51 which I did.
According the this diagram I need to configurer Dnat, forwarding and SNAT rules
Which seems to be a lot since I only have a few coonfiguration parameters to play with:
- Incomming interface XF10(??)
- Incomming protocol TCP
- Incomming port: 8443
- Destination interface XF51
- Destination IP: 192.68.2.2
- Destination port: 443
Al that information can go into the destination NAT
Is this correct? And if yes what should I put in the forwarding dan SNAT entries?
An example which uses OS 1.20 (new port names) is appriciated
