Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 2 subscribers
  • Views 4929 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Access to NAS Applicance outside local network

Roger
Hi

I installed a NAS appliance to a friend of mine. Since he doesn't no IT, I want to take care of the device from home.
I opened his firewall and using a laptop with WWAN I can login ok with the following link: https://NAS-Name.no-ip.org:5001 (The web access port is port 5001 (using HTTPS).

Trying to do this from home, where I'm sitting behing an Astaro firewall, all my packets are dropped and I never get a connection.

Any thought how I have to configure my Astaro?

Thank you

Roger


This thread was automatically locked due to age.
Parents
  • 0
    thanks for your answers.
    I'm using the proxy alright, but I'm using it in transparent mode, without https scan. I added an exception how explained by BAlfson, didn't work. Looking at the life protocol it looked to me as if the traffic is still stopped by a firewall rule.
    I then tried to add a firewall rule as sugggested by BarryG. I did the following:
    Source: internal Address
    Service: as mentioned above: TCP, source ports 1024-65535, dest: 5001
    Dest: NAS-DNS-Name.no-ip.org

    The packets are still dropped.

    Here the detailed log:
    2012:02:12-07:02:29 http://my-firewall-name ulogd[4989]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="mysourcemac" dstmac="friendsdestinationmac" srcip="source-IP" dstip="dest-IP" proto="6" length="48" tos="0x00" prec="0x00" ttl="127" srcport="56698" dstport="5001" tcpflags="SYN" 
    2012:02:12-07:02:29 http://my-firewall-name ulogd[4989]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="mysourcemac" dstmac="friendsdestinationmac" srcip="source-IP" dstip="dest-IP" proto="6" length="48" tos="0x00" prec="0x00" ttl="127" srcport="56700" dstport="5001" tcpflags="SYN" 

    Thanks for any help

    Roger
Reply
  • 0
    thanks for your answers.
    I'm using the proxy alright, but I'm using it in transparent mode, without https scan. I added an exception how explained by BAlfson, didn't work. Looking at the life protocol it looked to me as if the traffic is still stopped by a firewall rule.
    I then tried to add a firewall rule as sugggested by BarryG. I did the following:
    Source: internal Address
    Service: as mentioned above: TCP, source ports 1024-65535, dest: 5001
    Dest: NAS-DNS-Name.no-ip.org

    The packets are still dropped.

    Here the detailed log:
    2012:02:12-07:02:29 http://my-firewall-name ulogd[4989]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="mysourcemac" dstmac="friendsdestinationmac" srcip="source-IP" dstip="dest-IP" proto="6" length="48" tos="0x00" prec="0x00" ttl="127" srcport="56698" dstport="5001" tcpflags="SYN" 
    2012:02:12-07:02:29 http://my-firewall-name ulogd[4989]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="mysourcemac" dstmac="friendsdestinationmac" srcip="source-IP" dstip="dest-IP" proto="6" length="48" tos="0x00" prec="0x00" ttl="127" srcport="56700" dstport="5001" tcpflags="SYN" 

    Thanks for any help

    Roger
Children
No Data