Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Access Rule not workign

I have 3 Service Objects created for TCP port numbers 2663, 443 and 5790

I created a Service group for all 3. (McLeod API)

I created an Address Object (McLeod API Public) WAN/Host/Public IP

I created an Address Object (McLeod API Private) LAN/Host/Private IP


I created a NAT Policy as follows:


I created an Access rule as follows:

When I go to a browser and enter https://XXX.XXX.XXX.XX:5790 .... the site can't be reached.

https://192.168.1.9:5790 works fine.

So, I can get to the API Login screen locally, but not from a browser coming in through the outside.


What am I missing?

Category: Entry Level Firewalls
Reply

Answers

  • BWCBWC Cybersecurity Overlord ✭✭✭

    @john4938 I assume you need to make these ports available to the Internet? If this is the case your rules are not correct.

    NAT should look like this:

    Source (Original): ANY
    Source (Translated): Original
    
    Destination (Original): X6 IP  or  McLeod API Public
    Destination (Translated): McLeod API Private
    
    Service: McLeod API
    

    Your Access Rule should look like this:

    FROM: WAN
    TO: LAN
    Service: McLeod API
    Source: ANY
    Destination: X6 IP  or  McLeod API Public
    

    This is how you publish a Service to the WAN.

    Hopefully this is what you're looking for, if not please provide some extra details.

    --Michael@BWC

Sign In or Register to comment.