Port Forwarding on XTM 23 Series

I have extensive experience with Sonicwall setups.

I recently acquired an XTM 23 Series Firebox to replace my Sonicwall.  Firmware on the Firebox is 11.4.2

What are the steps to setup Port Forwarding?

Example:  From the internet, I want to be able to remote in to my Firebox using RDP Port 3392 to an internal Address of 192.168.0.251.

I did setup a New Firewall Policy and told it to Accept from Any-External but wasn't sure on how to setup the To section.

Do I need to setup a Rule under SNAT for each Port Forward?
j4piperAsked:
Who is Participating?
 
setasoujiroCommented:
that is correct
0
 
j4piperAuthor Commented:
XTM 23 Series - Firmware 11.4.B306888
0
 
setasoujiroCommented:
You setup a new rule
then say;
from: external or any-external
To: --> Add  NAT --> make nat from external to internal IP
done

you don't need a new rule for each forward, if you want to forward several ports to one and the same server from the same external, you can do either:

-make 1 big rule with all protocols in it
-make a snat and reuse it in the other rules
0
Increase Security & Decrease Risk with NSPM Tools

Analyst firm, Enterprise Management Associates (EMA) reveals significant benefits to enterprises when using Network Security Policy Management (NSPM) solutions, while organizations without, experienced issues including non standard security policies and failed cloud migrations

 
j4piperAuthor Commented:
I understand what you are saying but I need guidance on where to do this in the Firebox Web UI?

Thank you.
0
 
BrianCommented:
To Enable RDP and forward through to an internal IP address:
- Login to your WatchGuard's WebUI
- Go to Firewall > Firewall Policies
- Select your Firewall Policy and Click Edit
- Ensure your Policy Type is RDP
- In the From area confirm that it says Any-External
- In the To area Remove anything in there currently
- In the To area Click Add
- In the Member Type drop down menu, select static NAT
- Select your External Address from the drop down menu
- In the next field, type in the internal IP address and then Click OK
- Click Save in the Main Policy Screen
- Test it out
0
 
j4piperAuthor Commented:
hello there.

here is a screenshot of what i was interpreting from your email.

is this what you were thinking of?


screen-PFwd.jpg
0
 
j4piperAuthor Commented:
Awesome!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.