inventortechie/gist:8424c0370245e42c78c8c038c8f0dad5

## gistfile1.txt
{
    "interfaces": {
        "ethernet": {
            "eth2": {
                "address": [
                    "108.19.119.98/24",
                    "108.19.119.99/24",
                    "108.19.119.101/24",
                    "108.19.119.102/24",
                    "108.19.119.103/24",
                    "108.19.119.104/24",
                    "108.19.119.105/24",
                    "108.19.119.106/24",
                    "108.19.119.107/24",
                    "108.19.119.108/24"
                ],
                "firewall": {
                    "in": {
                        "name": "WAN_IN"
                    },
                    "local": {
                        "name": "WAN_LOCAL"
                    },
                    "out": {
                        "name": "WAN_OUT"
                    }
                }
            }
        }
    },
    "service": {
        "nat": {
            "rule": {
                "3100": {
                    "description": "NVR DNAT 108.19.119.99 TCP/80 to 192.168.1.211",
                    "destination": {
                        "address": "108.19.119.99",
                        "port": "80"
                    },
                    "inbound-interface": "eth2",
                    "inside-address": {
                        "address": "192.168.1.211",
                        "port": "80"
                    },
                    "log": "enable",
                    "protocol": "tcp",
                    "type": "destination"
                },
                "5100": {
                    "description": "NVR SNAT 108.19.119.99 TCP/80 to 192.168.1.211",
                    "log": "enable",
                    "outbound-interface": "eth0",
                    "outside-address": {
                        "address": "108.19.119.99",
                        "port": "80"
                    },
                    "protocol": "tcp",
                    "source": {
                        "address": "192.168.1.211",
                        "port": "80"
                    },
                    "type": "source"
                },
                "5200": {
                    "description": "NVR HAIRPIN 108.19.119.99 TCP/80 to 192.168.1.211",
                    "log": "enable",
                    "outbound-interface": "eth0",
                    "outside-address": {
                        "address": "108.19.119.99",
                        "port": "80"
                    },
                    "protocol": "tcp",
                    "source": {
                        "address": "192.168.1.211",
                        "port": "80"
                    },
                    "type": "masquerade"
                }
            }
        }
    },
    "firewall": {
        "name": {
            "WAN_IN": {
                "default-action": "drop",
                "rule": {
                    "1100": {
                        "action": "accept",
                        "description": "NVR NAT 108.19.119.99 TCP/80 to 192.168.1.211",
                        "destination": {
                            "address": "192.168.1.211",
                            "port": "80"
                        },
                        "log": "enable",
                        "protocol": "tcp"
                    }
                }
            }
        }
    }
}
	{
	"interfaces": {
	"ethernet": {
	"eth2": {
	"address": [
	"108.19.119.98/24",
	"108.19.119.99/24",
	"108.19.119.101/24",
	"108.19.119.102/24",
	"108.19.119.103/24",
	"108.19.119.104/24",
	"108.19.119.105/24",
	"108.19.119.106/24",
	"108.19.119.107/24",
	"108.19.119.108/24"
	],
	"firewall": {
	"in": {
	"name": "WAN_IN"
	},
	"local": {
	"name": "WAN_LOCAL"
	},
	"out": {
	"name": "WAN_OUT"
	}
	}
	}
	}
	},
	"service": {
	"nat": {
	"rule": {
	"3100": {
	"description": "NVR DNAT 108.19.119.99 TCP/80 to 192.168.1.211",
	"destination": {
	"address": "108.19.119.99",
	"port": "80"
	},
	"inbound-interface": "eth2",
	"inside-address": {
	"address": "192.168.1.211",
	"port": "80"
	},
	"log": "enable",
	"protocol": "tcp",
	"type": "destination"
	},
	"5100": {
	"description": "NVR SNAT 108.19.119.99 TCP/80 to 192.168.1.211",
	"log": "enable",
	"outbound-interface": "eth0",
	"outside-address": {
	"address": "108.19.119.99",
	"port": "80"
	},
	"protocol": "tcp",
	"source": {
	"address": "192.168.1.211",
	"port": "80"
	},
	"type": "source"
	},
	"5200": {
	"description": "NVR HAIRPIN 108.19.119.99 TCP/80 to 192.168.1.211",
	"log": "enable",
	"outbound-interface": "eth0",
	"outside-address": {
	"address": "108.19.119.99",
	"port": "80"
	},
	"protocol": "tcp",
	"source": {
	"address": "192.168.1.211",
	"port": "80"
	},
	"type": "masquerade"
	}
	}
	}
	},
	"firewall": {
	"name": {
	"WAN_IN": {
	"default-action": "drop",
	"rule": {
	"1100": {
	"action": "accept",
	"description": "NVR NAT 108.19.119.99 TCP/80 to 192.168.1.211",
	"destination": {
	"address": "192.168.1.211",
	"port": "80"
	},
	"log": "enable",
	"protocol": "tcp"
	}
	}
	}
	}
	}
	}