Hi,
I am running Sophos UTM 9.315-2
I have discovered that I cannot NAT ports 135 139 and 445 on the UTM.
I tested this by creating a NAT rule where Any source address on Any service is DNAT to an internal server.
I then manually created a firewall rule to allow Any source IP on Any service to this internal IP.
I turned on logging on both the NAT rule and the firewall rule.
The internal server does not have a host firewall.
If I try and telnet to the external IP on port 444 I get a connection refused message. This is expected as the host is not running anything on this port. On the UTM live logs it shows a grey NAT rule was logged and a green firewall rule logged.
If I then telnet to the external IP on port 446 I get the same connection refused message, again this is expected. On the UTM live logs it shows a grey NAT rule being logged and a green firewall rule logged.
If I then try to telnet to external IP on port 445 the telnet connection times out.
In the live logs no NAT rule gets logged and no firewall rule gets logged either. This means despite the host running a service on this port, no connection gets forwarded to the host by the UTM on this port.
I have tried this with various other ports. I have found ports 135 and 139 also exhibit this behaviour.
Have I found a bug with the software? Or is there something I need to turn off in the firewall in order to NAT those ports?
Deon
This thread was automatically locked due to age.
