This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

NAS External access

I have a File server name Synology, it has option to share files to external users, i tired to share the files but remote users not able to access it,

i have two Firewall in my Domain, one UTM version 9.711-5 another XG.

On XG i just created DNAT and allowed the fileserver to http and https access, this work fine and remote users have no issues.

But from UTM i did the same, i done creating rule for file server and allowed port 5000 and Dnat rule, but it not work.

Any suggestion would be appreciated

This thread was automatically locked due to age.

Jay Jay over 1 year ago

Opening up your file server to external (internet) access is not a good idea regardless of the port. Have your users connect to your network via vpn. I know for sure UTM supports this, and am pretty sure xg does too.

If you insist on allowing direct access, show a pic of your dnat rule. I assume the synology file server also has its own firewall, has external access been enabled there?
Cancel
Vote Up 0 Vote Down

Cancel
Amodin over 1 year ago

Can't stress the sentiment Jay Jay has given - you should consider VPN access through the firewall devices. This is terribly bad practice to open your network like that.

OPNSense 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz
16GB Memory | 500GB SSD HDD | ATT Fiber 1GB
(Former Sophos UTM Veteran, Former XG Rookie)
Cancel
Vote Up 0 Vote Down

Cancel
feroz syed over 1 year ago in reply to Jay Jay

Thanks for your reply, there is a built-in firewall enabled on NAS, also on NAS external access is enabled, now the issue is port 5001 on firewall, this port getting block byUTM.
Cancel
Vote Up 0 Vote Down

Cancel
PhilippRusch over 1 year ago

How do you see the drops?

Maybe just the proper gateway to the second firewall isn't set?

Mit freundlichem Gruß, best regards from Germany,

Philipp Rusch

New Vision GmbH, Germany
Sophos Silver-Partner

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
feroz syed over 1 year ago in reply to PhilippRusch

from the firewall log section port 5000 shows default drop
Cancel
Vote Up 0 Vote Down

Cancel
Jay Jay over 1 year ago in reply to feroz syed

I don't see any pics.

Please show pics of all relevant rules and definitions.
Cancel
Vote Up 0 Vote Down

Cancel
feroz syed over 1 year ago in reply to Jay Jay
Cancel
Vote Up 0 Vote Down

Cancel
feroz syed over 1 year ago in reply to feroz syed
Cancel
Vote Up 0 Vote Down

Cancel
PhilippRusch over 1 year ago in reply to feroz syed

Can you give us the screenshot of the UTM from that drops?

Mit freundlichem Gruß, best regards from Germany,

Philipp Rusch

New Vision GmbH, Germany
Sophos Silver-Partner

If a post solves your question please use the 'Verify Answer' button.
Cancel
Vote Up 0 Vote Down

Cancel
feroz syed over 1 year ago in reply to PhilippRusch

i tried to take the screenshot for packet drop but surprisingly i didn't find any drops, however the access from external still not work.
Cancel
Vote Up 0 Vote Down

Cancel