NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
FVS318N not port forwarding, nothing being allowed inbound.
I have purchased an configured a FVS318N as the firewall to our failover Internet connection but I am having problems getting anything in from the outside world. I have configured many FVS338 firewall...
Hi jmizoguchi
Yes there are 2 rules using 443 but they are both using different public IP addresses. We have a block of 6 IP addresses, 1 for the router and 5 usable. The router is setup in pass through mode, or NO NAT depending on what you want to call it. This means for example that we have 81.228.91.113 - 81.228.91.118. The router is on 81.228.91.113 the firewall WAN IP is 81.228.91.114 and the LAN IP is 192.168.0.254.
I have setup one rule that allows the Broadband IP, in this case it will be 81.228.91.114, on port 443(HTTPS) to port forward to a LAN server IP of 192,168.0.253 (The internal Exchange Server)
I have also setup a second rule that allows 81.228.91.115, Other Public IP, again using port 443 (HTTPS) but going to a LAN server of 192.168.0.250 (Sonicwall SSL VPN Appliance).
From a browser https://81.228.91.114/exchange should get me webmail and https://81.228.91.115 should get me the login page of the SSL VPN appliance.
I have an FVS338 setup with many rules like this and it works like a dream.
Unfortunately this FVS318N doesn't seem to forwarding the traffic to the internal LAN server even though the log is saying that it has been Accepted Inbound.
Mon Nov 19 16:28:14 2012(GMT+0000) [FVS318N][Kernel][KERNEL] WAN_LAN[ACCEPT]IN=eth1 OUT=bdg1 SRC=109.158.121.186 DST=192.168.0.252 LEN=48 TOS=0x00 PREC=0x80 TTL=113 ID=51806 DF PROTO=TCP SPT=2622 DPT=443 WINDOW=16384 RES=0x00 SYN URGP=0
Hope you now understand my setup and what the problem is.
Many Thanks
Neal.
Yes there are 2 rules using 443 but they are both using different public IP addresses. We have a block of 6 IP addresses, 1 for the router and 5 usable. The router is setup in pass through mode, or NO NAT depending on what you want to call it. This means for example that we have 81.228.91.113 - 81.228.91.118. The router is on 81.228.91.113 the firewall WAN IP is 81.228.91.114 and the LAN IP is 192.168.0.254.
I have setup one rule that allows the Broadband IP, in this case it will be 81.228.91.114, on port 443(HTTPS) to port forward to a LAN server IP of 192,168.0.253 (The internal Exchange Server)
I have also setup a second rule that allows 81.228.91.115, Other Public IP, again using port 443 (HTTPS) but going to a LAN server of 192.168.0.250 (Sonicwall SSL VPN Appliance).
From a browser https://81.228.91.114/exchange should get me webmail and https://81.228.91.115 should get me the login page of the SSL VPN appliance.
I have an FVS338 setup with many rules like this and it works like a dream.
Unfortunately this FVS318N doesn't seem to forwarding the traffic to the internal LAN server even though the log is saying that it has been Accepted Inbound.
Mon Nov 19 16:28:14 2012(GMT+0000) [FVS318N][Kernel][KERNEL] WAN_LAN[ACCEPT]IN=eth1 OUT=bdg1 SRC=109.158.121.186 DST=192.168.0.252 LEN=48 TOS=0x00 PREC=0x80 TTL=113 ID=51806 DF PROTO=TCP SPT=2622 DPT=443 WINDOW=16384 RES=0x00 SYN URGP=0
Hope you now understand my setup and what the problem is.
Many Thanks
Neal.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
