DNAT no me funciona Forti 50B

[alejo35]

FortiWiFi-50B 3.00-b0678(MR6 Patch 6)

Hola, tengo problemas para hacer un dnat

serverippublica:7799 dnat serverippublica:7800

defini un virtual ip
External IP Address/Range: serverippublica
Mapped IP Address/Range: ip lan
Port Forwarding
External Service Port: 7799
Map to Port: 7800

desde el navegador de dice esto; "Firefox can't establish a connection to the server at serverippublica:7799

mire por un syslog y no veo dropeo.

si hago un telnet desde la lan al 7800 llego bien al port desde internet no a la 7799

saludos.

[gabyrossi]

Hola, como estas? que es lo que ncesitas hacer?

dnat para fortigate es:
Multicast destination NAT (DNAT) allows you translate externally received multicast
destination addresses to addresses that conform to an organization's internal addressing
policy.
By using this feature that is available only in the CLI, you can avoid redistributing routes at
the translation boundary into their network infrastructure for Reverse Path Forwarding
(RPF) to work properly. They can also receive identical feeds from two ingress points in
the network and route them independently.

config firewall multicast-policy
edit <index_int>
set action {accept | deny}
set dnat <address_ipv4>
set dstaddr <address_ipv4mask>
set dstintf <name_str>
set nat <address_ipv4>
set srcaddr <address_ipv4mask>
set srcintf <name_str>
set protocol <multicastlimit_int>
set start-port <port_int>
set end-port <port_int>
end


saludos

[alejo35]

hola, quiero forwardear cambiando el port destino;

o sea, webserver:7799 forward a ipinterna:7800

lo tengo que hacer desde el CLI?

sds

[gabyrossi]

Hola, eso es un virtual ip comun y corriente.

saludos

[alejo35]

soory, me habian pasado mal el port listening por eso no fucionaba

gracias !!