This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to port forward? New to this.

I am helping out a office setup a port forward on UTM 9 Firewall.

here is message we received from software company

 

.....you need to configure the firewall so that port 22, 80, and 443 is pointing to Pace (192.168.0.47) port 22, 80, 443....

 

Im creating a new NAT rule but get confused on what exactly I need to change and configure



This thread was automatically locked due to age.
Parents
  •    attaching screenshot of how I think its supposed to go. But still not able to access from external ip.

  • click the sliders (next to the rule numbers) to turn them on (they will go green)

    Under the search for services, search for http, https, ssh and not the port numbers.

    Rule Type = DNAT

    Traffic coming from: ANY
    Using Service = http
    Going to = WAN Interface (your outside internet facing interface)

    Change the destination to: new_paceserver
    And the service to: leave blank

  • I did that and used the http , https and ssh. Now only have three rules

     

    They tested from outside and telling me only 22 works

     

    any addl settings to get http and https working?

  • OK Problem solved. It appears other rules in previous order were overriding the ones I was making. Disabled them and good to go.

  • Glad it worked out for you. You've just came accross a rule of the UTM or any other firewall for that matter.

    The rules work order ie from top to bottom and once a rule is matched, no other rule is tried for that traffic.

    So if a deny all http rule is number 1 and an allow all http rule is number 2, everything http will be denied.

    I'd advise you to read the RULZ post on this forum and then have another read of it. It's a good bible to have.

     

    Also consider using the WAF as it offers superior protection to web servers compared to DNAT's

Reply
  • Glad it worked out for you. You've just came accross a rule of the UTM or any other firewall for that matter.

    The rules work order ie from top to bottom and once a rule is matched, no other rule is tried for that traffic.

    So if a deny all http rule is number 1 and an allow all http rule is number 2, everything http will be denied.

    I'd advise you to read the RULZ post on this forum and then have another read of it. It's a good bible to have.

     

    Also consider using the WAF as it offers superior protection to web servers compared to DNAT's

Children
No Data