Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Port Forwarding, why do some rules work and others not??

Hi,


I currently have a Watchguard XTM 22 series with no security bundles, just running in standard Firewall mode. Rules on that are dead easy to setup and just tend to just work.

Now the reason for me trying out other software is because I could do with some hardware that can handle higher throughput across subnets and of course, the ability to do forms of scanning and web filtering.

I was trying out pfSense, which worked okay but I still couldnt get Bacula to work through it (same issue I am having with Sophos XG). And Sophos caught my eye with all of it's filtering features.

I have found that all of my rules that go to things such as Plex and my Synology work fine, but when I set them up exactly the same to forward ports for Bacula - my backups just won't run.


Here is an image of my current rules, the IP in Source refers to my #Port 1 as I have a Dynamic IP. I have marked which ones work and which ones don't (even though some traffic hits BACULA-SD slightly). I have also tried these with Any Zone but that did not work.

Is anyone backing up remote servers with Bacula?

Any help is greately appreciated



This thread was automatically locked due to age.
Parents
  • I have had a go at what you have said, will come back to the webui 4444 later.

    Most importantly I need to get my Bacula web server backups working to even make this product feasible to use here at home.

    I have altered the rule as you wil see below, it is getting very slight 'OUT' traffic but my Bacula will not connect to it's storage. The storage in configuration files all points to a local 192.168.8.12

    This works perfectly on my Watchguard XTM 22 using Static NAT, so I don't believe it to be configuration issue with Bacula at all.

  • I have my rules configured as WAN, not Any Zone

    Try that. Daft quesiton, but what's the internal IP address of your Sophos box? I take it that it *is* on the same subnet as 192.168.8.12
  • One other thing.. while testing the rule, make sure you have all the webfilter, IPS, and Application Filter set to NONE in your main network rule - that way you can test without them interfering. Wouldn't surprise me if one of those is blocking it.
Reply
  • One other thing.. while testing the rule, make sure you have all the webfilter, IPS, and Application Filter set to NONE in your main network rule - that way you can test without them interfering. Wouldn't surprise me if one of those is blocking it.
Children
No Data