Port Forwarding on XTM 23 Series

I have extensive experience with Sonicwall setups.

I recently acquired an XTM 23 Series Firebox to replace my Sonicwall.  Firmware on the Firebox is 11.4.2

What are the steps to setup Port Forwarding?

Example:  From the internet, I want to be able to remote in to my Firebox using RDP Port 3392 to an internal Address of

I did setup a New Firewall Policy and told it to Accept from Any-External but wasn't sure on how to setup the To section.

Do I need to setup a Rule under SNAT for each Port Forward?
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

j4piperAuthor Commented:
XTM 23 Series - Firmware 11.4.B306888
You setup a new rule
then say;
from: external or any-external
To: --> Add  NAT --> make nat from external to internal IP

you don't need a new rule for each forward, if you want to forward several ports to one and the same server from the same external, you can do either:

-make 1 big rule with all protocols in it
-make a snat and reuse it in the other rules
j4piperAuthor Commented:
I understand what you are saying but I need guidance on where to do this in the Firebox Web UI?

Thank you.
SD-WAN: Making It Work for You

As bandwidth requirements and Internet costs grow, businesses naturally want to manage budgets by reducing reliance on their most expensive connection types. Learn more about how to make SD-WAN work for your business in our on-demand webinar!

To Enable RDP and forward through to an internal IP address:
- Login to your WatchGuard's WebUI
- Go to Firewall > Firewall Policies
- Select your Firewall Policy and Click Edit
- Ensure your Policy Type is RDP
- In the From area confirm that it says Any-External
- In the To area Remove anything in there currently
- In the To area Click Add
- In the Member Type drop down menu, select static NAT
- Select your External Address from the drop down menu
- In the next field, type in the internal IP address and then Click OK
- Click Save in the Main Policy Screen
- Test it out
j4piperAuthor Commented:
hello there.

here is a screenshot of what i was interpreting from your email.

is this what you were thinking of?

that is correct

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
j4piperAuthor Commented:
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Software Firewalls

From novice to tech pro — start learning today.