How do i configure the sonicwall 1260 to route HTTP traffic to multiple servers behind the firewall?

Posted on 2008-10-18
Last Modified: 2012-06-27
I am using a Sonicwall 1260 and have a single public IP address.  I would like to map this single IP address to multiple servers behind the firewall.  These servers use private IPs.  Each of them is a webserver that provides a different service.  (Website, MS CRM and TS Web Access) How do i configure the firewall to route properly?  If I edit the site bindings and use an alternate port...then how do i configure the 1260?  I don't see anything in the wizards.  Thank so much in advance.
Question by:BrockClayton666
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2

Expert Comment

ID: 22750821
Well what you can do is you can forward ports with your sonic to your servers. Assign each server a different port and it will forward it to your servers

Author Comment

ID: 22752394
Thanks Nasirsh!  Is the possible through the public access wizars?  How do i forward the ports?

Accepted Solution

VCBooth earned 500 total points
ID: 22753200
you need to go into Firewall and Services and add custom services for your ports - ie if using port 80 then its already there are HTTP, however, if you had 81 then you create a new service (eg HTTP81 - TCP Port 81).  Once you have created these custom services then run the wizard for public access - upon doing this you can select the service and the SonicWALL will create it for you.  Point the public IP address and service to the private IP address and you're done.  Goodluck.
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!


Author Comment

ID: 22760654
Thanks VCBOOTH! i have created a new service and gone through the wizard and it looks as though everything is set up properly on the sonic wall.  When i attempt to hit the site however it is not working.  

Here is what I've done so far:

1.  Set up the service in the sonic wall to forward all traffic on port 5555 to my internal IP address of 10.10.1.XXX. (running IIS 7 on server 2008)
2.  In IIS manager i have edited the site bindings for the default website and added port "5555"  I am able to browse the site normally when i am physically logged into the server (http://localhost:5555 & 10.10.1.XXX:5555)  
3.  I am NOT able to access the site using unless i am logged into the server.  When trying to access the site from another computer logged into the domainn i get the page cannot be displayed error.  If i try i get right in.

What am i missing guys and girls?  

Expert Comment

ID: 22764776
Can you access the site from the PUBLIC_IP:5555 that you have mapped using the firewall?

Can you ping from the firewall and other PC's?

Within IIS 7 check that it is definately mapped to the IP address

Are there multiple websites running on IIS 7?  If so, check they all map to individual IP addresses and/or have different ports.

Author Comment

ID: 22768882

I can't access the site from PUBLIC_IP:5555.

I can ping 10.10.1.XXX successfully from other computers on the domain.

Within IIS there is only one website and it is in fact configured with the 5555 binding.  Once again i am able to browse the site on the local machine.  I just can't get to it using the 5555 port from any where else.


Author Closing Comment

ID: 31507488
the routing advise you gave me was spot on.  there was one additional issue though.  i needed to enable port 5555 on the server's firewall.

many thanks.


Featured Post

Is your NGFW recommended by NSS Labs?

Ours is! NSS Labs Next Generation Firewall Test gives the WatchGuard Firebox M4600 a "Recommended" rating! Curious where your NGFW landed on the  Security Value Map? See the map and download the full report today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Do you want to know how to make a graph with Microsoft Access? First, create a query with the data for the chart. Then make a blank form and add a chart control. This video also shows how to change what data is displayed on the graph as well as form…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question