Set up PPPoE(WAN) :8022 to LAN host 1921.68.1.119:22
WAN and LAN are firewall zones.
Step 1, DNAT
set nat destination rule 11000 destination port '8022'
set nat destination rule 11000 inbound-interface name 'pppoe0'
set nat destination rule 11000 log
set nat destination rule 11000 protocol 'tcp'
set nat destination rule 11000 translation address '192.168.1.119'
set nat destination rule 11000 translation port '22'Step 2, Firewall
show firewall zone-policy to get firewall policy from WAN to LAN, in my case WAN_IN.
set firewall ipv4 name WAN_IN rule 100 action 'accept'
set firewall ipv4 name WAN_IN rule 100 destination address '192.168.1.119'
set firewall ipv4 name WAN_IN rule 100 destination port '22'
set firewall ipv4 name WAN_IN rule 100 protocol 'tcp'No need to set WAN_LOCAL