Fortinet black logo

Administration Guide

Home FortiRecorder 7.2.0 Administration Guide
7.2.0
7.2.0
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.0
6.0.0
2.7.2
2.7.1
2.7.0
2.6.0

Configuring NAT/port forwarding on your firewall/router

Configuring NAT/port forwarding on your firewall/router

If your deployment:

  • includes a remote network, and
  • VPN is not used to connect the local and remote networks

then on your office's FortiGate, third-party firewall, or Internet router, you must configure:

  • NAT and/or
  • port forwarding

to accept and forward incoming connections from an external/public IP address on the firewall/router to the internal/private IP address of FortiRecorder.

cameras connected to FortiRecorder through a router or firewall

For each NAT/port forward, the IP address that receives connections is either the:

  • IP address on the office WAN or Internet router
  • IP address of the external interface on a firewall

Similarly, communications in the opposite direction — from FortiRecorder to cameras etc. — also require NAT and/or port forwarding. If you have multiple remote devices, then configure one for each device that needs to receive connections from FortiRecorder.

Note

If you are not sure what your network's Internet address is, while connected to your office network, you can use an online utility such as:

https://ping.eu/

Port numbers on the external IP address can be either be forwarded from the same as the listening port numbers as FortiRecorder, or translated from a different port number.

On FortiGate, NAT and port forwarding are done by a virtual IP (VIP) address. For example, if port2 is attached to the Internet, then you configure a VIP on port2 to forward connections to the internal IP address and port numbers of FortiRecorder. For details, see Appendix A: Port numbers and the FortiGate Administration Guide or other documentation for your firewall/router.

Tooltip

NAT and port forwarding are usually required for remote networks that use IPv4, but not IPv6. If you only use IPv6, you may be able to skip this step.

Once you have configured NAT and/or port forwarding on your firewall/router, you must configure FortiRecorder and your remote devices to use it. Continue with Configuring the public port numbers and domain name. Later, you will also configure NAT and/or fort forwarding (Address mode) for each remote camera.

Previous
Next

Configuring NAT/port forwarding on your firewall/router

If your deployment:

  • includes a remote network, and
  • VPN is not used to connect the local and remote networks

then on your office's FortiGate, third-party firewall, or Internet router, you must configure:

  • NAT and/or
  • port forwarding

to accept and forward incoming connections from an external/public IP address on the firewall/router to the internal/private IP address of FortiRecorder.

cameras connected to FortiRecorder through a router or firewall

For each NAT/port forward, the IP address that receives connections is either the:

  • IP address on the office WAN or Internet router
  • IP address of the external interface on a firewall

Similarly, communications in the opposite direction — from FortiRecorder to cameras etc. — also require NAT and/or port forwarding. If you have multiple remote devices, then configure one for each device that needs to receive connections from FortiRecorder.

Note

If you are not sure what your network's Internet address is, while connected to your office network, you can use an online utility such as:

https://ping.eu/

Port numbers on the external IP address can be either be forwarded from the same as the listening port numbers as FortiRecorder, or translated from a different port number.

On FortiGate, NAT and port forwarding are done by a virtual IP (VIP) address. For example, if port2 is attached to the Internet, then you configure a VIP on port2 to forward connections to the internal IP address and port numbers of FortiRecorder. For details, see Appendix A: Port numbers and the FortiGate Administration Guide or other documentation for your firewall/router.

Tooltip

NAT and port forwarding are usually required for remote networks that use IPv4, but not IPv6. If you only use IPv6, you may be able to skip this step.

Once you have configured NAT and/or port forwarding on your firewall/router, you must configure FortiRecorder and your remote devices to use it. Continue with Configuring the public port numbers and domain name. Later, you will also configure NAT and/or fort forwarding (Address mode) for each remote camera.

Previous
Next