Orbi WiFi 7 RBE973
Reply

Re: FVS338 Port Forwarding Failure

Tridac
Aspirant

FVS338 Port Forwarding Failure


Hi,

 

FVS 318/338 Port Forwarding saga

 

Given up trying to get a FVS318 working, forwarding traffic from wan  to internal lan host so now trying an FVS338, older model again, but latest firmware from 2013 and reset defaults to start. Getting the same failure.

 

Setup is as follows:

 

Mode: Nat, not router
DHCP: Disabled
Routing: No entries

 

External Wan ip: 192.9.200.252
Gw: 192.9.200.254
Mask: 255.255.255.0
Dns: 208.67.220.220, 208.67.222.222

 

Internal Lan Ip: 10.10.10.250

Telnet host is at: 10.10.10.150

Telnet client is at: 192.9.200.214


Start by trying something simple, telnet from wan to a lan host, so set up a rule
as follows:

 

Default Outbound Policy: Allow Always
No added rules

 

Inbound Services
Service Name Filter LAN Server IP Address LAN Users WAN Users Destination Bandwidth Profile Log
TELNET Allow Always 10.10.10.150 ANY WAN1 NONE Always


Result log is:

[kernel] LOG_PACKET[DROP] IN=WAN OUT=LAN src=192.9.200.214 DST=10.10.10.150 PROTO=TCP SPT=36372 DPT=23

 

Outgoing pings from lan to wan host and ntp time update works fine, so the

network is ok..

 

Have setup and using pfsense, opnsense and other open source firewalls
for years now and do embedded development for work, so this should be a 1/2 hour setup, right ?. Have used Netgear routers for years without a problem, as a simple outgoing nat router, but did port forwarding ever work on Netgear kit, or is there someting obvious i'm missing ?...

 

Regards,

Chris

Message 1 of 3
antinode
Guru

Re: FVS338 Port Forwarding Failure

> FVS338 [...]

 

   I know approximately nothing about these gizmos, but I wouldn't be
looking for relevant experise in a "Cable Modems & Routers" forum.  You
might do better in:

 

      https://community.netgear.com/t5/x/bd-p/business-vpn-firewalls

 

   When in doubt, a "Community" search for the model number might find
some existing/old discussions on a particular device.  Where they are,
you might want to be.

 

   Of course, if you're looking for discouragement:

 

      http://netgear.com/support/product/FVS338.aspx

Message 2 of 3
Tridac
Aspirant

Re: FVS338 Port Forwarding Failure

Hi,

 

Thanks for that. I'm just trying to link 2 subnets for added security, no need for speed, so this unit should be fine as proof of concept. Just followed the instructions in the manual but doesn't work and the log files don't say much as to the cause. Did try pointing zenmap at the wan port, which says telnet, 23 is open, but  the box is dropping the packets, not forwarding them to the lan side client. I know this is an older unit, but it should still work as per the manual...

 

Regards,

 

Chris

 

Message 3 of 3
Discussion stats
  • 2 replies
  • 1119 views
  • 0 kudos
  • 2 in conversation
Announcements