Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 45 replies
  • Subscribers 3 subscribers
  • Views 369266 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cannot open any ports via NAT or firewall rule but existing ones work?

traderjay
Hi All - I am trying to enable remote access for the Plex server and it requires the opening of ports in the 32xx range. 

I enabled the following DNAT rule: TCP 1:65535 → 32400.

Unfortunately the port remains closed when testing using this site and on Plex Server's network config:
Open Port Check Tool

I tried a variety of port numbers and none of them seemed to work which is very baffling. As a last resort, I tried some common port used by RDP such as 3389 and the connection worked....

Lastly, I am also using the following rule on my UTM:

Internal (Network) -> any -> any

I've also reviewed the firewall log and below is the dropped packet:

2015:10:19-12:30:19 homestation ulogd[6592]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="ppp0" srcip="54.193.168.189" dstip="24.140.238.16" proto="6" length="60" tos="0x00" prec="0x00" ttl="47" srcport="2985" dstport="32400" tcpflags="SYN"


This thread was automatically locked due to age.
  • 0
    I'm with Bob being with Me and am hoping that he is with me being with him being with me...  ;P

    Hey Bob.
    __________________
    ACE v8/SCA v9.3

    ...still have a v5 install disk in a box somewhere.

    http://xkcd.com
    http://www.tedgoff.com/mb
    http://www.projectcartoon.com/cartoon/1
  • 0 in reply to BAlfson
    I'm with Scott - I think it's an indication of some other unusual configuration, but if the wheels keep turning, I say keep riding the bike!

    Cheers - Bob


    Hi Bob - My Sophos is just a fresh install with no other major host and definitions configured. The only rule that I am using now is the firewall rule 

    Any IPV4 -> Any -> Any.

    I guess this rule only allows for outgoing traffic in the most common ports and since Plex server requires a special port in the 32400 range then a custom rule must be setup to allow the traffic through?
  • 0
    I would use 'Internal (Network) -> Any -> Internet : Allow' instead.  Both that and your original rule should allow the traffic on the special port.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0

    Hi team,

    me too have truble with plex.

    I'm read many thread for plex.

     

    My configuration:

     

     

    Web Filtering is enable, i'm testing without.

     

    I tear my hair......

  • 0 in reply to Damien KTORZA

    Chouette !  C’est la première fois que je vois WebAdmin en français.  Salut, Damien, and welcome to the UTM Community!

    If you're testing from an internal device, that won't work with a DNAT.  See Accessing Internal or DMZ Webserver from Internal Network.  Also, I wonder if your "Plex_Server" definition's DNS host name of "desktop-7uefuun" can work - I would have expected a complete FQDN there.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to Damien KTORZA

    Hi,

     

    It plex thats buggy.  Make sure everything is set like you described.

    then set port in plex ,click apply, WAIT patiently, you then get the screen as you show, now LOGOUT of plex (yes logout) log back in and go to the settings again it should appaer as working.

    Oddly enough just restarting plex doesnt work. 

     

    I just tried this a few times as i had my port set to 32400 first but wanted to test it. you do need to logout plex and log back in. 

     

    and your settings are correct! you can ignore balfson (with all respect and its good advice) plex is just a weird thing. try the logging in and out of plex should work tested it here 5 times.

    it is true what balfson said that if you just use external a device to connect to plex it will work apparently the plex test is very very odd and buggy and many users bang their head on that plextest screen.

     

  • 0 in reply to brunomc

    It's a joke!
    I reboot the PC and it works

    a joke !

     

    I never saw that with plex

     

    In any case thank you for your reply

     

    I try now with IPS enable.

  • 0 in reply to Damien KTORZA

    Plex is very buggy :) work in progress.

  • 0 in reply to brunomc

    Very buggy yes !

     

    After enable IPS acces outside is K.O.

     

    A rule of exclusion may be ?

  • 0 in reply to Damien KTORZA

    hi,

     

    i did not do that and have ips on and plex still works. 

    You did try with external device ? (mobile or so) as the plex test page will always crap out (making again necessary to reboot plex or  logout  log in)

    What appears in the utm log ?

Unfiltered HTML