Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 5 subscribers
  • Views 5959 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Port forwarding

BrianKaaya

 Dear community,

I have 2 different databases on our network I want to be accessible remotely to staff once they are out of the hospital. The first one A is running on IP 192.168.1.A , the other is B at 192.168.1.B and my public IP is 160.242.143.153. I have gone ahead to have a address point to these respectful IPs say database1.ug and database2.ug so users dont have to worry about remembering the IP addresses to get to these databases.

Can someone assist me how to configure my firewall and DNAT to accept access to these database while away from the hospital.

Thanks and regards

Brian 



This thread was automatically locked due to age.
Parents
  • 0

    Hi, Brian, and welcome to the UTM Community!

    You can do this with DNATs using the suggestions above.  Please see #4 in Rulz.  Also, I would recommend "Internet" in the 'Coming from' field instead of the "Any" object.

    As you gain more experience, you might want to avoid opening your servers up to the world:

    • Use Webserver Protection to protect the server using 80 & 443.  Then disable the DNAT.
    • Use the SSL VPN Remote Access to allow only authenticated users into your network to access the other server.  Then, disable the DNAT.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0

    Hi, Brian, and welcome to the UTM Community!

    You can do this with DNATs using the suggestions above.  Please see #4 in Rulz.  Also, I would recommend "Internet" in the 'Coming from' field instead of the "Any" object.

    As you gain more experience, you might want to avoid opening your servers up to the world:

    • Use Webserver Protection to protect the server using 80 & 443.  Then disable the DNAT.
    • Use the SSL VPN Remote Access to allow only authenticated users into your network to access the other server.  Then, disable the DNAT.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML