This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNAT rules not working

Hi all,

I have an ASG 220 V.8 using (2) DNAT rules for my inbound email that are working flawlessly. However, I'm trying to configure two more DNAt rules to forward specific ports to a specific server behind my ASG. so far I have not been able to get it to work, in essence, i'n trying to do this:

ANY -> (port i need) -> Uplink Primary Addresses
Service: (Port I need)
DNAT
Destination: Internal Server IP
Service: (Port I need)

I'll attach a pic of the DNAT rule I'm referring to.

This thread was automatically locked due to age.

Parents

0 BarryG over 13 years ago

I'd suggest running tcpdump on the Astaro console, and check that:

1. The traffic is getting to your External interface

2. the traffic is going through your Internal interface

3. a reply is seen from the ftp server, on the Internal interface

4. the reply goes out the Ext interface

If both 1 & 2 are true, and not 3, then you may have a Network definition wrong for your FTP server, or the FTP server may have it's own firewall running, or gateway set wrong.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BarryG over 13 years ago

I'd suggest running tcpdump on the Astaro console, and check that:

1. The traffic is getting to your External interface

2. the traffic is going through your Internal interface

3. a reply is seen from the ftp server, on the Internal interface

4. the reply goes out the Ext interface

If both 1 & 2 are true, and not 3, then you may have a Network definition wrong for your FTP server, or the FTP server may have it's own firewall running, or gateway set wrong.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data