Biofilminc
asked on
Forward source port in forefront TMG 2010?
I have a forefront TMG 2010 server setup as my firewall. I have a new vault to cloud system setup for my backups. The traffic leaves on UDP 1197 but comes back on a variable port from 10,000 to 65,000. The vault people claim the issue is with my firewall but I have never once seen traffic come back in the firewall on 1197. I can see that the source port is 1197 but the destination port is 10,000 to 65,000. If the traffic came back in on destination port 1197 then I can forward that with no problem.
Can I forward based on source port and not destination port? Is the issue on the vault side?
Here is what they sent me to show the traffic is leaving their firewall no problem but it looks to me like it is trying to access port 62221 on my firewall and not 1197.
16:25:45.145024 IP 10.200.1.41.1197 > 209.242.XXX.XXX.62221: UDP, length 22
Can I forward based on source port and not destination port? Is the issue on the vault side?
Here is what they sent me to show the traffic is leaving their firewall no problem but it looks to me like it is trying to access port 62221 on my firewall and not 1197.
16:25:45.145024 IP 10.200.1.41.1197 > 209.242.XXX.XXX.62221: UDP, length 22
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Can you provide the source that states this? I don't see why it would take up a lot of resources.
-JJ
-JJ
ASKER
Either way I have never once received traffic on port 1197.
Does the info they gave me show that it should go to 1197 or in this case 62221.
They say its my fault and I don't know how to port forward 1197. I can't forward traffic that I do not get.
--------------------------
16:25:45.145024 IP 10.200.1.41.1197 > 209.242.XXX.XXX.62221: UDP, length 22
Does the info they gave me show that it should go to 1197 or in this case 62221.
They say its my fault and I don't know how to port forward 1197. I can't forward traffic that I do not get.
--------------------------
16:25:45.145024 IP 10.200.1.41.1197 > 209.242.XXX.XXX.62221: UDP, length 22
You won't see traffic coming back in 1197. The traffic is coming back on a random port. You need to allow 1197 outbound and 10,000 - 65,000 inbound, if I understand correctly.
-JJ
-JJ
ASKER
According to Unitrends that is not the case and it should come in on port 1197 and its not because it's my fault. They won't help, just point blame. I forwarded all the ports and have not seen anything get blocked but still no luck. Its a Unitrends problem not mine, they just won't do anything about it.
Thanks for your help.
Thanks for your help.
ASKER
Fixed my forwarding problems
ASKER