j4piper
asked on
Port Forwarding on XTM 23 Series
I have extensive experience with Sonicwall setups.
I recently acquired an XTM 23 Series Firebox to replace my Sonicwall. Firmware on the Firebox is 11.4.2
What are the steps to setup Port Forwarding?
Example: From the internet, I want to be able to remote in to my Firebox using RDP Port 3392 to an internal Address of 192.168.0.251.
I did setup a New Firewall Policy and told it to Accept from Any-External but wasn't sure on how to setup the To section.
Do I need to setup a Rule under SNAT for each Port Forward?
I recently acquired an XTM 23 Series Firebox to replace my Sonicwall. Firmware on the Firebox is 11.4.2
What are the steps to setup Port Forwarding?
Example: From the internet, I want to be able to remote in to my Firebox using RDP Port 3392 to an internal Address of 192.168.0.251.
I did setup a New Firewall Policy and told it to Accept from Any-External but wasn't sure on how to setup the To section.
Do I need to setup a Rule under SNAT for each Port Forward?
Last Comment
You setup a new rule
then say;
from: external or any-external
To: --> Add NAT --> make nat from external to internal IP
done
you don't need a new rule for each forward, if you want to forward several ports to one and the same server from the same external, you can do either:
-make 1 big rule with all protocols in it
-make a snat and reuse it in the other rules
then say;
from: external or any-external
To: --> Add NAT --> make nat from external to internal IP
done
you don't need a new rule for each forward, if you want to forward several ports to one and the same server from the same external, you can do either:
-make 1 big rule with all protocols in it
-make a snat and reuse it in the other rules
ASKER
I understand what you are saying but I need guidance on where to do this in the Firebox Web UI?
Thank you.
Thank you.
To Enable RDP and forward through to an internal IP address:
- Login to your WatchGuard's WebUI
- Go to Firewall > Firewall Policies
- Select your Firewall Policy and Click Edit
- Ensure your Policy Type is RDP
- In the From area confirm that it says Any-External
- In the To area Remove anything in there currently
- In the To area Click Add
- In the Member Type drop down menu, select static NAT
- Select your External Address from the drop down menu
- In the next field, type in the internal IP address and then Click OK
- Click Save in the Main Policy Screen
- Test it out
- Login to your WatchGuard's WebUI
- Go to Firewall > Firewall Policies
- Select your Firewall Policy and Click Edit
- Ensure your Policy Type is RDP
- In the From area confirm that it says Any-External
- In the To area Remove anything in there currently
- In the To area Click Add
- In the Member Type drop down menu, select static NAT
- Select your External Address from the drop down menu
- In the next field, type in the internal IP address and then Click OK
- Click Save in the Main Policy Screen
- Test it out
ASKER
hello there.
here is a screenshot of what i was interpreting from your email.
is this what you were thinking of?
screen-PFwd.jpg
here is a screenshot of what i was interpreting from your email.
is this what you were thinking of?
screen-PFwd.jpg
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Awesome!
Software Firewalls
Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.
20K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
TRUSTED BY
ASKER