Wouter’s Blog

Go to Configuration - NAT.  Click the “Add” button and choose “Add Static NAT

rule“.  Put in the following information in the various fields:

Under “Real Address”
Interface : inside
IP Address : 192.168.1.16
Netmask : 255.255.255.255

Under “Static Translation”
Interface : outside
IP Address : <click on the drop down arrow pick list and choose (interface IP)>

Check the box named “Enable Port Address Translation (PAT)”
Protocol : TCP
Original Port : 6500
Translated Port : 6500

Click “OK”

Now, do the above procedure again, filling in all fields with the same info, except choose “UDP” for the protocol when modifying the PAT configuration.

Next, you need to allow the traffic you just specified in your port forwarding rules.  Here’s how:

Go to Configuration - Security Policy.  Click “Add”.

Under “Interface and Action”
Interface : outside
Direction : incoming
Action : permit

Under “Source”
Type : any

Under “Destination”
Type : <click on the drop down arrow pick list and choose (interface IP)>
Interface : outside

Under “Protocol and Service”
Protocol : tcp

Under “Source Port”, leave all defaults

Under “Destination Port”
Leave “Service” radio button enabled, and where it says “any”, type over this and put in 6500

Click “OK”.

Repeat this procedure with the same values, except under “Protocol and Service”, choose “udp”.

Click “OK”.

That should do it.  That will port forward any traffic received on the outside interface on destination port UDP/TCP 6500 and forward it to port UDP/TCP 6500 on internal host 192.168.1.16 from any Internet host.