Fortinet FortiGate 4000 Betriebsanweisung

Go to Firewall > Virtual IP.

Select Create New.

Enter a name for the dynamic port forwarding virtual IP.

Select the virtual IP External Interface from the list. 
The external interface is connected to the source network and receives the packets to 
be forwarded to the destination network.
You can select any firewall interface or a VLAN subinterface.

Select Port Forwarding.

Set the External IP Address to 0.0.0.0.
The 0.0.0.0 External IP Address matches any IP address. 

Enter the External Service Port number for which you want to configure dynamic port 
forwarding.
The external service port number must match the destination port of the packets to be 
forwarded. For example, if the virtual IP provides PPTP passthrough access from the 
Internet to a PPTP server, the external service port number should be 1723 (the PPTP 
port). See 

 for more information.

Enter the Map to IP address to which to map the external IP address. For example, 
the IP address of a PPTP server on an internal network.

Enter the Map to Port number to be added to packets when they are forwarded.
If you do not want to translate the port, enter the same number as the External Service 
Port.

Select OK.

Go to Firewall > Virtual IP.

Select the Delete icon beside the virtual IP you want to delete.

Select OK.

Go to Firewall > Virtual IP.

Select the Edit icon beside the virtual IP you want to modify.

Select OK.

An IP pool (also called a dynamic IP pool) is a range of IP addresses added to a 
firewall interface. You can enable Dynamic IP Pool in a firewall policy to translate the 
source address of outgoing packets to an address randomly selected from the IP pool. 
An IP pool list appears when the policy destination interface is the same as the IP pool 
interface.