Solved

Port forwarding in SonicWall firewall

Posted on 2007-03-29
4
876 Views
Last Modified: 2010-04-09
Hello All
i've just bought a Sonicwall TZ 170 firewall. I'm trying to configure the port forwarding... i suppose it is to be done through Nat Policies ...i just need to do it for SMTP(exchange server ) , RDP and PPTP.
Do i have to configure network objects for these things???

Can anyone has more information on how to do it??

Thanks
Ash
0
Comment
Question by:Ash_San
  • 3
4 Comments
 
LVL 7

Accepted Solution

by:
pkutter earned 500 total points
ID: 18821424
0
 
LVL 7

Expert Comment

by:pkutter
ID: 18821427
SMTP is tcp 25
rdp is tcp 3389
pptp is tcp 1723
0
 

Author Comment

by:Ash_San
ID: 18825261
hii pkutter
Thanks for the quick info..In your link page it doeasn't describe the destination IP address of the exchange server to forward the port number.
i have tried using Public Server Wizard in Firewall--> Access Rules and created a Rule for Mail Server.
It also created the NAT policy automatically..
i haven;t tested it yet coz i could only test it on weekend..

if you have some more information for rdp and pptp and how to make them more secure ,,

Thanks again

Ash
0
 
LVL 7

Assisted Solution

by:pkutter
pkutter earned 500 total points
ID: 18826133
pptp is probably one of the weaker vpn solutions at this time. I would suggest using and IPSEC VPN. IPSEC can be setup LAN to LAN of Client to LAN. Here's the spec sheet for your firewall.
http://www.sonicwall.com/us/TZ_170_Series.html
It looks like you have 2 site to site  VPN's and client to site are optional. I suggest implementing IPSEC VPN for RDP and then you shouldn't need the pptp at all. Close the PPTP and RDP on your firewall and just use IPSEC. Some people may not agree that IPSEC is necessary for RDP however when it comes to security paranoia isn't a bad thing.
0

Featured Post

On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

713 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question