Policy Object "Service" setting for Virtual IP Port forwarding...
Hi all, I encountered the following situation and would like to understand more the mechanism behind.
I am setting up Virtual IP port forwarding and IPv4 policy object, such that I can ssh to private machine from public IP, for example,
public_ip:22099 -> private_pc099:22
When checking the tutorial in setting up the IPv4 policy object, the guideline tells us to set the "Service" to ALL (or ANY), as the port forwarding rule in Virtual IP object will only forward the port 22099 to 22. While I can achieve the ssh purpose successfully for setting ALL for service, as an experiment, I created explicitly the port 22099 as a new Service object, then assign the 22099 service in the IPv4 Policy object's Service attribute. Then I cannot SSH to public_ip:22099 -> private_pc099:22. But if I set SSH as the service in IPv4 Policy object, the SSH connection can be made successfully.
So if the above situation is expected, may I understand more the mechanism behind, for example, why I need to set the service to SSH (22) instead of Service_22099?
Thanks a lot for any comments.