• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 453
  • Last Modified:

Block Port for Browsing Servers

I have a new Linksys RV082 and I want to know what port I have to block from preventing someone from browsing a server I have on a Live IP.  I had to create a one to one NAT for my email server and my Citrix server, however if you browse the IP that is on the outside, you can see my files.  Granted you have to authenticate but I do not want it even coming up.
  • 2
1 Solution
In the WebGui, you'll need to create some Firewall Access Rules to handle this.  

I am assuming you enabled the 1 to 1 IP by assigning the DMZ ip host to this internal server.    

You would create an Access Rule to allow the Citrix ports from all IP on the WAN interface to the Server IP on the LAN.  
You would create an Access Rule to allow http port 80 from all IP on the WAN interface to the Server IP on the LAN.
Finally, create a DENY rule from all IP on the WAN to the server IP on the LAN.   <-  This keeps eveything else out and must be last in the priority order so that the other Allow rules can be evaluated 1st.  

For exact info, check pg 34 of the admin guide here.... http://www.cisco.com/en/US/docs/routers/csbr/rv082/administration/guide/RV082_V10_UG_D-WEB.pdf
tbjbsAuthor Commented:
This is what I have last: Deny      All Traffic [1]      WAN1      Any      Any      Always  however it still is allowing me to browse my servers from outside the network.  Also I had to DENY 3389 because I could RDP to my Exchange Server.
Normally instead of a 1to1 NAT you would do PAT and only open the ports that are needed. There are a lot more dangerous ports than 80 and 3389 that are open.
tbjbsAuthor Commented:
Eventhough I had a DENY WAN1 ANY ANY it actually ignores this line and you must put in a DENY WAN1 ANY Range for it to Deny all ports.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

The Firewall Audit Checklist

Preparing for a firewall audit today is almost impossible.
AlgoSec, together with some of the largest global organizations and auditors, has created a checklist to follow when preparing for your firewall audit. Simplify risk mitigation while staying compliant all of the time!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now