Use Case: You host an RDP server on the DMZ. Your ISP has provided a static IP address that you want to expose to the public as your RDP server address. You want to allow Internet user to access the RDP server by using the specified public IP address.
Solution 1: Perform the following tasks to complete the configuration:
1. Go to the Networking > Address Management page to create a host address object with the IP 192.168.12.101 called “RDPServer” and a host address object with the IP 172.39.202.102 called “PublicIP.”
2. Go to the Networking > Service Management page to create a TCP service object with the port 3389 called “RDP.”
3. Go to the Firewall > NAT > Port Forwarding page to create a port forwarding rule as follows.
4. Or go to the Firewall > NAT > Advanced NAT page to create an advanced NAT rule as follows.
5. Then go to the Firewall > Access Control > ACL Rules page to create a firewall rule as follows to allow access:
Note When you create the port forwarding rule, you can check Create Firewall Rule to automatically generate the firewall rule.
Solution 2: For this use case, you can use the DMZ Wizard to complete the configuration.
1. Click Configuration Wizards > DMZ Wizard.
2. In the DMZ Configuration page, configure a DMZ network as follows:
3. In the DMZ Service page, create a DMZ service as follows:
4. Click Finish to apply your settings.
5. A firewall rule will be automatically generated as follows to allow access.