German Forum Portforwarding im internen Netz

UTM Firewall requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 16 replies
Subscribers 6 subscribers
Views 2690 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Portforwarding im internen Netz

Jochen Barg over 5 years ago

Guten Morgen liebe Forenuser,

ich habe ein Problem mit einer Sophos UTM, ich habe einen dyndns Account und möchte darüber meinen Mailserver und eine Synology erreichen.

Ich habe die DNAT einträge gemacht, der Mailserver ist via https auch von außen und innen erreichbar, wenn ich nun aber den Port 5001 für die

verschlüsselte Verbindung als DNAT eintrage komme ich von außen zwar auf die Synology, aber über das interne Netz nicht.

Es sollte so sein das ich beide Geräte auch im internen Netz über die dyndns Adresse erreichen kann, ich habe schon einiges gelesen in den Foren,

hat aber leider alles nichts gebracht.

Habt ihr eine Idee, gerne kann ich euch auch mehr Infos liefern.

Vielen Dank.

MfG

Jochen

This thread was automatically locked due to age.

Parents

0 apijnappels over 5 years ago

Entschuldige mich für Antwort in English.

For traffic from internal going to the external interface you need a full NAT rule otherwise it won't work.

Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.
Cancel
Vote Up 0 Vote Down

Cancel
0 Jochen Barg over 5 years ago in reply to apijnappels

This i have try, but it still doen´t work from internal and external network, too.

Here my screenshots about the rule:
Cancel
Vote Up 0 Vote Down

Cancel
0 apijnappels over 5 years ago in reply to Jochen Barg

Do you perhaps have another (D)NAT rule with a lower number than 7) where Datenverkehrsquelle = any and Datenverkerhsdienst = FILESERVER 5001?

If so, try to put your FULL NAT rule higher (for example position 1) and see if that helps.

Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 apijnappels over 5 years ago in reply to Jochen Barg

Do you perhaps have another (D)NAT rule with a lower number than 7) where Datenverkehrsquelle = any and Datenverkerhsdienst = FILESERVER 5001?

If so, try to put your FULL NAT rule higher (for example position 1) and see if that helps.

Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data