Solved

Port forwarding in SonicWall firewall

Posted on 2007-03-29
4
881 Views
Last Modified: 2010-04-09
Hello All
i've just bought a Sonicwall TZ 170 firewall. I'm trying to configure the port forwarding... i suppose it is to be done through Nat Policies ...i just need to do it for SMTP(exchange server ) , RDP and PPTP.
Do i have to configure network objects for these things???

Can anyone has more information on how to do it??

Thanks
Ash
0
Comment
Question by:Ash_San
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 7

Accepted Solution

by:
pkutter earned 500 total points
ID: 18821424
0
 
LVL 7

Expert Comment

by:pkutter
ID: 18821427
SMTP is tcp 25
rdp is tcp 3389
pptp is tcp 1723
0
 

Author Comment

by:Ash_San
ID: 18825261
hii pkutter
Thanks for the quick info..In your link page it doeasn't describe the destination IP address of the exchange server to forward the port number.
i have tried using Public Server Wizard in Firewall--> Access Rules and created a Rule for Mail Server.
It also created the NAT policy automatically..
i haven;t tested it yet coz i could only test it on weekend..

if you have some more information for rdp and pptp and how to make them more secure ,,

Thanks again

Ash
0
 
LVL 7

Assisted Solution

by:pkutter
pkutter earned 500 total points
ID: 18826133
pptp is probably one of the weaker vpn solutions at this time. I would suggest using and IPSEC VPN. IPSEC can be setup LAN to LAN of Client to LAN. Here's the spec sheet for your firewall.
http://www.sonicwall.com/us/TZ_170_Series.html
It looks like you have 2 site to site  VPN's and client to site are optional. I suggest implementing IPSEC VPN for RDP and then you shouldn't need the pptp at all. Close the PPTP and RDP on your firewall and just use IPSEC. Some people may not agree that IPSEC is necessary for RDP however when it comes to security paranoia isn't a bad thing.
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question