Netscreen Port Forwarding

Netscreen -5XP port Forwarding
my setup is very straight forward and simple, I have a Netscreen 5xp with 3 pcs conected total. my emule and torrent apps are running on 192.168.2.1 and the 5xp is 192.168.2.1. and it is running in trust- untrust mode. how to forward ports for emule or bit torrent or azureus;
login to your netscreen
go to; Objects > Services > CustomClick newAnd create custom service and list all ports you will have to use for bit torrentName this;
bit torrent
TCP src port: 1-65535, dst port: 56969-56969
TCP src port: 1-65535, dst port: 56881-56881
UDP src port: 1-65535, dst port: 56881-56881
TCP src port: 1-65535, dst port: 6885-6892
UDP src port: 1-65535, dst port: 6885-6892
Hit OK
then go to network>interface>
and then edit untrustthen VIP > add new vip
servicepick new service virtual ip; (your outside ip that is assigned automatically by your ISP, this should be filled in automatically)
map to service; ( pick the custom service that you just made, bit torrent)map to IP; (the box that you are running your service on, mine is 192.168.2.14)
hit OK
then go to wizards> policypick untrust to trust
then nextDestination Address:pick VIP(untrust) under address book
nextservicepick the service that you defined in the custom section action permit nextenable nat- don’t do anything here just click next
enable logging check that off and Enable count of traffic passed via the policy (this is so you can check to see the traffic- turn this off after you are happy with everything and it is all working)
nextAuthentication Optionsclick nonenextSchedule:nonenext finish-------------*****This step you must do- everyone forgets this step, forwarding will not work otherwise!!!*****then you have to telnet into the netscreen in windows go to start> run> then type in;
CMDblack box will open and then
type; telnet then enterthen;
open 192.168.2.1(the 192.168.2.1 is the address of my 5gt)then enter in the user name and passwordand then type this command; set vip multi-portthen it will return you to;
ns5gt->then type;reset
then type;y
and again;y
In reset ...close the black box.and you are good to go, in a couple of minutes! It will take 3-5 minutes for everything to start working. Fire up the apps and then log in to the 5gt and go reports> policies> and click on the grid thing to see the traffic. If this is not working after 10-15 mins try the telnet commands again and if still not working update firmware and clear all policies, VIP’s, and custom services.