Dnat port issue - from external network - Sophos XG

Question

Hi, 
 
 I am trying to allow external access to an internal Server on our network. 
 Appliance used is a Sophos XG430 and it sits behind a router in it's own DMZ 
 Here are the settings used: 
 
 Source Zones: WAN Allowed Client Networks: Any Destination Host/Network: WAN Interface - 192.168.100.254 Services: Custom Service with Source port 7999 : Destination Port 25000 Protected Servers: Custom_Name_Server_IP - 10.10.10.10 Mapped Port: 25000 (auto configured from the above custom service) Protected Zone: LAN 
 
 I want to mention that the EXACT same settings worked just fine with the previous setup on a Sophos SG series appliance. 
 
 Any help would be greatly appreciated. 
 
 Thanks in advance.

lferrara · Answer

Marius, 
 under source port you shall leave * or 65535. Under the service, leave the external port as 1111 and 2222 for both 2 firewall rules. 
 Regards