?
Solved

Is there a way to forward Port 443 SSL to more than one device on a Symantec Gateway 320 Firewall?

Posted on 2008-10-28
4
Medium Priority
?
622 Views
Last Modified: 2012-05-05
What do you do with this firewall if you have to assign a port forwarding rule to more than one host/server? It doesn't seem possible. I get "service may not be enabled for more than one rule". There must be a workaround... anyone have any suggestions?

Specifically, I want to leave Outlook Web Access/Exchange running on port 443 but also would like to host a VPN concentrator using the same port. Am I just out of luck with this firewall?

0
Comment
Question by:philodendrin
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 4

Accepted Solution

by:
Kaddict earned 1500 total points
ID: 22828527
From what I know, trying to forward a port to two computer is trying to send a tennis ball to two different players in two different directions... sounds quite impossible.

sorry if I'm right

-kaddict
0
 
LVL 4

Expert Comment

by:Kaddict
ID: 22828536
If anyone else could confirm that it is completely impossible, I'd be happy

Of course you could have two servers running on your LAN and listening on 443, but on the Internet side, both will not be able to be accessible thru 443. You need to bind for example (443 from internet) to (443 on the Web server) and (444 from internet) to (443 on the router which needs the 443 port)

hope it helps,

kaddict
0
 

Author Comment

by:philodendrin
ID: 22836996
That is what I assumed as well.

I think, in theory, the way to do this would be to have a separate public IP address point to either OWA or the VPN concentrator. In other words, use more than one Static IP and firewall. But I'm very fuzzy on how to put this into practice... wouldn't I need a second NIC in the mail server going to a separate firewall or one dual WAN firewall? Or, the VPN concentrator on a separate public IP?... but, from there I don't know how I'd link the device to the local LAN.

A little more background... What we have now is a T-1 with multiple static IP addresses. We're only using one IP  on our Symantec firewall for PPTP VPN (configured on a Windows 2003 file Server) and OWA (on a separate Exchange 2003 server) . What the client wants is a device that will allow them to connect remotely without having to configure VPN - so, some sort of clientless VPN device like the Netgear SSL312 VPN Concentrator. My problem is that I'm unsure how to integrate it into the existing LAN without stepping on OWA and Windows Mobile... since it'll want to use port 443.  


0
 
LVL 4

Expert Comment

by:Kaddict
ID: 22837720
True. more than 1 public IP, and a lot of work could make this possible :)

Good luck!

-kaddict
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
A 2007 NCSA Cyber Security survey revealed that a mere 4% of the population has a full understanding of firewalls. As business owner, you should be part of that 4% that has a full understanding.
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question