This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

port setup issue

I have a new UTM install.

I am unable to get the firewall to pass traffic for a specific port, additionally, it does not show as being blocked in the real-time log.

I have a web-application running on an internal server on ports 8040/8041

I have a DNAT configured as follows:
Matching Cond
from:  external wan
Service:  8040/8041 service rule I created
Going to:  Internal Network
Action
change destination to:
My servers internal IP
and the service to: 8040/8041 service rule I created
auto firewall rule IS selected

I also created the following firewall rule:
source:  Internet IPv4
Services:  8040/8041 service rule I created
Destination:  IP of my internal server

Can someone tell me what I am missing/doing wrong?

This thread was automatically locked due to age.

0 Scott_Klassen over 10 years ago

Make certain that your custom service rule only changes the destination port, leave the source port as default (1:65535). Check that you've used the correct syntax for a port range in the definition, 8040:8041)

Your DNAT should be:
Matching Cond
from: Internet IPv4
Service: 8040/8041 service rule you created
Going to: External WAN (Address)
Action
change destination to:
My servers internal IP
and the service to: leave blank
auto firewall rule selected

When testing, you must check from external (a host out on the internet), not from your internal LAN. For access from internal network, see https://www.sophos.com/en-us/support/knowledgebase/115191.aspx
Cancel
Vote Up 0 Vote Down

Cancel