Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Plex Media Access

I have a plex media server and cannot access the content outside of my home network.  I have created a security policy in XG Firewall to port forward port 32400, but the connection still fails.  Does anyone have any ideas?  Thanks in advance for the help.



This thread was automatically locked due to age.
Parents
  • Not sure if you were able to get it working or not yet. I was able to get it working by creating a new policy where source was WAN and service = "Plex" and destination was LAN with network set to my plex host. The Plex service was a new service I created using TCP srcprt = 1024:65535 dstprt = 32400. The issue I was ran into when I was first trying to set this up was random source ports not being allowed through. Fixed that by setting srcprt to 1024:65535.

  • I set "objects" for everything - services, hosts, groups, VLANs etc. I find it much easier to manage and the corresponding access behaviour seems more understandable (to me anyway!).

    My port-based services generally have source set as 1:65535 by default and I've never had a problem - interesting that you have. Why would excluding protected ports make any difference I wonder?
  • I do the same as you with creating objects for everything. I am also wondering about excluding protected ports. It does look like he is using a network rule vs a business policy. One thing i cant figure out is if using a business policy I can't see how to add the service groups vs entering the port numbers for port forwarding.
  • I based my source ports off of a default service which used 1024:65535. I don't think it would cause problems to allow all ports though. It would just be an any statement.
  • You can't. For me it doesn't really matter, since the name of the rule tells me what it is doing and my setup is quite simple. I suppose for more complex rules, then the ability to add service groups rather than a port list would improve readability of the rule.
Reply Children
No Data