Solved

Port forwarding in SonicWall firewall

Posted on 2007-03-29
4
868 Views
Last Modified: 2010-04-09
Hello All
i've just bought a Sonicwall TZ 170 firewall. I'm trying to configure the port forwarding... i suppose it is to be done through Nat Policies ...i just need to do it for SMTP(exchange server ) , RDP and PPTP.
Do i have to configure network objects for these things???

Can anyone has more information on how to do it??

Thanks
Ash
0
Comment
Question by:Ash_San
  • 3
4 Comments
 
LVL 7

Accepted Solution

by:
pkutter earned 500 total points
Comment Utility
0
 
LVL 7

Expert Comment

by:pkutter
Comment Utility
SMTP is tcp 25
rdp is tcp 3389
pptp is tcp 1723
0
 

Author Comment

by:Ash_San
Comment Utility
hii pkutter
Thanks for the quick info..In your link page it doeasn't describe the destination IP address of the exchange server to forward the port number.
i have tried using Public Server Wizard in Firewall--> Access Rules and created a Rule for Mail Server.
It also created the NAT policy automatically..
i haven;t tested it yet coz i could only test it on weekend..

if you have some more information for rdp and pptp and how to make them more secure ,,

Thanks again

Ash
0
 
LVL 7

Assisted Solution

by:pkutter
pkutter earned 500 total points
Comment Utility
pptp is probably one of the weaker vpn solutions at this time. I would suggest using and IPSEC VPN. IPSEC can be setup LAN to LAN of Client to LAN. Here's the spec sheet for your firewall.
http://www.sonicwall.com/us/TZ_170_Series.html
It looks like you have 2 site to site  VPN's and client to site are optional. I suggest implementing IPSEC VPN for RDP and then you shouldn't need the pptp at all. Close the PPTP and RDP on your firewall and just use IPSEC. Some people may not agree that IPSEC is necessary for RDP however when it comes to security paranoia isn't a bad thing.
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Firewall vs WYSIWYG editor 5 73
iptables and udp ports 23 81
Sonicwall Email los and Alerts 1 55
DHCP lease issue ? 8 84
Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now