Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 13 replies
  • Subscribers 2 subscribers
  • Views 4255 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Unable to setup NAT rule

xp3000
Hi,

I'm trying to setup a NAT rule to allow our HQ to connect to the UTM9 firewall on external interface on our public ip and port 8787 and then forward this to an internal webserver running on port 8787.

i've attached a couple of screenshots to see what i'm doing wrong, also on our external interface we're getting a error in UTM GUI.


This thread was automatically locked due to age.
Parents
  • 0
    Hi,

    did you double check all your host and service definitions? It sounds as if it doesn't recognize the traffic. Could you show those entries with screenshots?

    Source Definition should be a single host with IP 81.138.158.189.
    Make sure your service definition works on TCP Port 8787, maybe you set it to UDP?

    Another thing you could try is unchecking "automatic packet filter rule" and add one yourself. Make sure you use the internal IP address as the destination address in the Firewall.

    Cheers,
    Chris
  • 0 in reply to Krycek
    this is what the firewall is doing:

    18:04:18 Default DROP TCP 81.138.158.189:59921
    → 172.16.32.102:8787 [SYN] len=48 ttl=111  tos=0x00 srcmac=44[:D]3:ca:5e:a:c0 dstmac=0:50:56:87:4b:31

    I've got the following rule in the firewall:
    Sources: Our HQ IP
    Services: 1:65535 > 8787
    Destinations: Internal IP webserver

    why is the firewall still blocking this?
  • 0 in reply to xp3000
    Did you by chance set the definition to a fixed interface?

    It would be very helpful if you could show screenshots.
Reply Children
No Data