Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 2 subscribers
  • Views 1114 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Simple VNC DNAT doesnt work - Default Drop!!

TJWIN
Hi all,
Frustrated because trying to follow people's DNAT examples for forwarding a port for VNC. I want to be able to connect from external through my Astaro into VNC port (5900) on my computer. When I try it, I see the live packet filter log saying '07:23:40 Default DROP TCP 192.168.10.10 : 2960 
 → 98.204.180.63 : 5900 
 [SYN] len=48 ttl=128 tos=0x00 srcmac=00:00:00:00:00:00 dstmac=00:19[:D]b:ff:b2:c1'

The detailed log states it's rule # 60001.
My NAT/DNAT setup is:
Traffic selector:  Any →  VNC →  External (WAN) (Address)
(also tried opposite: Traffic selector:  External (WAN) (Address) →  VNC →  Any) 
NAT Mode: DNAT
Destination: 192.168.0.5
Destination Service: 
Automatic Packet Filter Rule: [checked]

Where do I turn off the Default Drop for this?????!!!!


This thread was automatically locked due to age.
Parents
  • 0
    Hi, when you're testing this, are you doing it from an external connection? If so, what is 192.168.10.10?

    The first DNAT looks correct.

    Barry
  • 0 in reply to BarryG
    Barry,
    Sorry - I cut/paste incorrectly. The 192.168.10.10 should be 192.168.0.10 and is another PC I was going out from with VNCViewer and specifying my external address to come back in. Are you saying the problem isn't on the inbound but just the vncviewer going out?
Reply
  • 0 in reply to BarryG
    Barry,
    Sorry - I cut/paste incorrectly. The 192.168.10.10 should be 192.168.0.10 and is another PC I was going out from with VNCViewer and specifying my external address to come back in. Are you saying the problem isn't on the inbound but just the vncviewer going out?
Children
No Data