Solved

Forwarding single port to seperate machine ZyWall USG 50

Posted on 2011-03-15
7
3,931 Views
Last Modified: 2012-05-11
We set up a ZyWALL USG 50 on our network. We have everything being forwarded to the server on the network. However there is one port that we would like to forward to a separate machine on the network. Set up 1:1 NAT for the server and set up a second 1:1 NAT for the separate machine, but it still forwards to the server.
0
Comment
Question by:mjkisic
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 
LVL 33

Accepted Solution

by:
it_saige earned 250 total points
ID: 35141499
Move the nat rule for the second machine in front of the nat rule for the server.  If the ACLs in the ZyWall are configured properly, then the rule for the second machine will be resolved before the rule for the server is resolved.

-saige-
0
 

Author Comment

by:mjkisic
ID: 35141614
Alright so we have two NAT's.
the first one is 1:1 NAT to the PC.
Interface: WAN1
Original IP (Static IP)
Mapped IP (Internal IP)
Protocol TCP

Second is,
1:1 NAT to the server
Interface WAN1
Original IP (static IP)
Mapped IP (Server Internal IP)
Protocol Any
0
 
LVL 33

Expert Comment

by:it_saige
ID: 35141655
That should be all you need.

Can you post your ACL's (remember to remove any personal/confidential information).

-saige-
0
Surfing Is Meant To Be Done Outdoors

Featuring its rugged IP67 compliant exterior and delivering broad, fast, and reliable Wi-Fi coverage, the AP322 is the ideal solution for the outdoors. Manage this AP with either a Firebox as a gateway controller, or with the Wi-Fi Cloud for an expanded set of management features

 

Author Comment

by:mjkisic
ID: 35141673
What specifically?
0
 

Author Comment

by:mjkisic
ID: 35141716
Priority 1 from WAN to LAN any user any source
destination (Internal computer)
service (TCP Port)
allow

Priority 2 from WAN to LAN
and user
source (any)
destination (internal server)
service "sharepoint services)
allow
0
 
LVL 33

Expert Comment

by:it_saige
ID: 35141955
That should be good.

-saige-
0
 

Author Comment

by:mjkisic
ID: 35142107
It didn't kick in until just now for some reason, but that worked. Thank you.
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco ASA 5512 LAN Config 16 103
Changing Lease Duration for DHCP clients 34 68
Upgrading from Sonicwall Tz210 6 35
Rogue RDP Connections 5 58
Network traffic routing plays key role in your network, if you have single site with heavy browsing or multiple sites, replicating important application data from your Primary Default Gateway ,you have to route your other network traffic from your p…
This is the first one of a series of articles I’ll be writing to address technical issues that are always referred to as network problems. The network boundaries have changed, therefore having an understanding of how each piece in the network  puzzl…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question