This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Simple VNC DNAT doesnt work - Default Drop!!

Hi all,
Frustrated because trying to follow people's DNAT examples for forwarding a port for VNC. I want to be able to connect from external through my Astaro into VNC port (5900) on my computer. When I try it, I see the live packet filter log saying '07:23:40 Default DROP TCP 192.168.10.10 : 2960
→ 98.204.180.63 : 5900
[SYN] len=48 ttl=128 tos=0x00 srcmac=00:00:00:00:00:00 dstmac=00:19[:D]b:ff:b2:c1'

The detailed log states it's rule # 60001.
My NAT/DNAT setup is:
Traffic selector: Any → VNC → External (WAN) (Address)
(also tried opposite: Traffic selector: External (WAN) (Address) → VNC → Any)
NAT Mode: DNAT
Destination: 192.168.0.5
Destination Service:
Automatic Packet Filter Rule: [checked]

Where do I turn off the Default Drop for this?????!!!!

This thread was automatically locked due to age.

Parents

0 BarryG over 15 years ago

Hi, when you're testing this, are you doing it from an external connection? If so, what is 192.168.10.10?

The first DNAT looks correct.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BarryG over 15 years ago

Hi, when you're testing this, are you doing it from an external connection? If so, what is 192.168.10.10?

The first DNAT looks correct.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 TJWIN over 15 years ago in reply to BarryG

Barry,
Sorry - I cut/paste incorrectly. The 192.168.10.10 should be 192.168.0.10 and is another PC I was going out from with VNCViewer and specifying my external address to come back in. Are you saying the problem isn't on the inbound but just the vncviewer going out?
Cancel
Vote Up 0 Vote Down

Cancel