This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNAT and Automatic Firewall Rules

I am using DNAT to forward external static ips to some of my internal servers.

Traffic Selector: Internet -> ANY SERVICE -> Server Wan Host

Forward to: Server Lan Host

My question is, if I select Automatically Create Firewall Rules is it going to open every port going to my Web Server (which I obviously do not want)? What is the best practice to use?

(Solved - I think) I created a service group and put only the ports I wanted open within the group

This thread was automatically locked due to age.

0 Scott_Klassen over 10 years ago

It's going to create firewall rules based on the information that you've entered into the NAT rule. If you put Any for Using Services, then that'll be in the firewall rule. Best practice is to set only the service(s) that you actually need to be forwarded.
Cancel
Vote Up 0 Vote Down

Cancel