Configuring public services on Palo Alto Firewall

Configuring Public Services on the Palo Alto Firewall


Server => NAT public to, FTP can be accessed through this public IP from external clients.

First we need to install an FTP server, for example PC using Filezilla server.Then enter the firewall configuration port’s IP and create the virtual router and zone, then continue with the following steps:

Step 1: Create a NAT policy

Policy > NAT > Add

Fill in the NAT policy:

Step 2: Create a security policy to allow external calls to FTP port 21

Policy > Security > Add


Test again:

About client types

The result is no problem: