Hi All,
During 6.312, the DNAT must be different ports
I have a web server at port 80 on my laptop.
This port is not to server website but for F-Secure Policy Manager whereby the it runs a Apache server and clients reports to it via HTTP.
Thus I did a DNAT from Port 1000 -> 80
Example http://account.dyns.org:1000
I recall I created 2 rules
ANY -> WAN Interface Port 1000 Allow
ANY -> My laptop Port 80 Allow
Now in version 7.1
I did a DNAT and used the create rule automatically.
1) I did a scan at GRC and port 1000 is open
2) I run my web server and it seems fine.
3) Run for sometime and I realised it does Not always work and majority of time does not.
4) I do confirm there are times it is successful.
I open Packet Filter
1) It shows "suspecious TCP state" etc in Grey
Took me sometime and end up I disable everything in Protocol handling
2) Now it shows Default Drop.
By right we should create a rule but I am confused what rule I need as I cannot see the rule that is auto created by the DNAT.
3) I am hasitent to create rule as there are times the console shows client report successfully.
4) I agree rule must be created if 100% default drop but now it seems to work at times, just small minority.
Is this "intermittent" working a DNAT bug ?
Is it still necessary for the ports to be different in 7.1?
Is it advisable to enable protocol handling, check all the boxes and set to strict? Does that make it secure?
TCP Suspicious State in Grey means it drop? or alert and pass thru?
This thread was automatically locked due to age.
