Hi All more help required

I have a internal LAN with range ips in 192.170.0.x on a subnet of 255.255.255.0

I have 5 public IPs set up in the WAN > Internet access > WAN1 > WAN IP ALIAS button.

i have put a server on the DMZ side so it has a internal ip of 192.170.0.21 and a public IP of 222.222.333.222 (example)

I have enable block on the firewall settings and as a temp mesure allowed all traffic outbound.

I have a port forward for my router public IP 222.222.333.221 that forwards to the server at 192.170.0.21 and i can RDP using that public address with the port number after the IP, I cant seem to add a rule to get to it via the public IP ending in .222

so it looks a bit like this

RDP >222.222.333.221:1334 > login screen and im in

RDP >222.222.333.222 > no login screen connection blocked if turn firewall off it works just fine. if i add a pass for port 3389 to its public IP it makes no diffrence when the firewall is up.

Can some one advise?