Configuring public services on Palo Alto Firewall

Configuring Public Services on the Palo Alto Firewall

Model:

Server 192.168.2.100 => NAT public to 10.1.3.100, FTP can be accessed through this public IP from external clients.

First we need to install an FTP server, for example PC 192.168.2.100 using Filezilla server.Then enter the firewall configuration port’s IP and create the virtual router and zone, then continue with the following steps:

Step 1: Create a NAT policy

Policy > NAT > Add

Fill in the NAT policy:

Step 2: Create a security policy to allow external calls to FTP port 21

Policy > Security > Add

crime

Test again:

About client types

The result is no problem: