Watchguard Edge

How would I create a rule to allow a client behind a WG edge to use Remote Desktop to communicate with a server that is sitting on the internet?  I keep getting the below error message????  Where 192.168.111.x is the client and A.B.C.D is the server... thanks!!!

discard from 192.168.111.x port 3032 to A.B.C.D port 3389 TCP SYN (default)
CameronFrasnellyAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

srikrishnakCommented:
You must enable NAT...that means translating the packet from your private ip address (192.168.111.X) to Internet...May be you can refer to the system documentation to how to configure a nat rule...
srikrishnakCommented:
Some more info

Enabling service-based NAT
Service-based NAT is not dependent on enabling simple dynamic NAT. From Policy
Manager:
1 Select Setup => NAT. Click Advanced.
2 Enable the Enable Service-Based NAT checkbox.
3 Click OK to close the Advanced NAT dialog box. Click OK to close the Dynamic
NAT dialog box.
jonesy2kCommented:
You may also need to add a rule to the policy to allow outgoing tcp port 3389 (as opposed to the actual network address translation).
Jonesy
CameronFrasnellyAuthor Commented:
There is no Servic-Based NAT check box.  When I setup an outgoing rule from the client to any, it still blocks the traffic with the above message???
supportsoftCommented:
just go into the firrewalls section then into incoming, and then set up a custom service

which allows tcp  port 3389 inbound to 192.168.111.x where x = the ip of the internal machine you want to rdp.

Once setup remeber to allow it

Regards

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Software Firewalls

From novice to tech pro — start learning today.