diff --git a/configs/fortigate/vdom_scsd/firewall.cfg b/configs/fortigate/vdom_scsd/firewall.cfg
index e3ea2f6..4cedd63 100644
--- a/configs/fortigate/vdom_scsd/firewall.cfg
+++ b/configs/fortigate/vdom_scsd/firewall.cfg
@@ -2824,6 +2824,11 @@ config firewall address
     edit "CNYWorks_MGMT"
         set subnet 192.168.68.0 255.255.255.0
     next
+    edit "Centro"
+        set comment "For 411SQL Connection"
+        set associated-interface "outside"
+        set subnet 67.216.0.66 255.255.255.255
+    next
 end
 config firewall multicast-address
     edit "all_hosts"
@@ -4069,6 +4074,11 @@ description Eastern Suffolk BOCES access to NTSS.scsd.ad"
         set mappedip "10.1.40.22"
         set extintf "outside lag"
     next
+    edit "VIP-411SQL"
+        set extip 198.36.24.225
+        set mappedip "10.1.40.225"
+        set extintf "outside lag"
+    next
 end
 config firewall vipgrp
     edit "vip-grp-barracuda_Archivers"
@@ -5983,6 +5993,21 @@ config firewall policy
         set logtraffic all
         set comments "Address Lookup for parents"
     next
+    edit 126
+        set name "Centro->411SQL Out->In"
+        set srcintf "outside"
+        set dstintf "inside"
+        set action accept
+        set srcaddr "Centro"
+        set dstaddr "VIP-411SQL"
+        set schedule "always"
+        set service "SSH"
+        set utm-status enable
+        set ssl-ssh-profile "certificate-inspection"
+        set ips-sensor "Incoming_IPS"
+        set logtraffic all
+        set comments "Allow Centro to SFTP to Access 411 SQL Server"
+    next
     edit 93
         set name "SBC_Ribbon_Out->In"
         set srcintf "outside"