Menu

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register
Options

Access Rule not workign

john4938john4938 Newbie ✭
in Entry Level Firewalls

I have 3 Service Objects created for TCP port numbers 2663, 443 and 5790

I created a Service group for all 3. (McLeod API)

I created an Address Object (McLeod API Public) WAN/Host/Public IP

I created an Address Object (McLeod API Private) LAN/Host/Private IP


I created a NAT Policy as follows:

sonicwall nat policy.jpg


I created an Access rule as follows:

sonicwall config.jpg

When I go to a browser and enter https://XXX.XXX.XXX.XX:5790 .... the site can't be reached.

https://192.168.1.9:5790 works fine.

So, I can get to the API Login screen locally, but not from a browser coming in through the outside.


What am I missing?

Category: Entry Level Firewalls
Reply

Answers

  • Options
    BWCBWC Cybersecurity Overlord ✭✭✭

    @john4938 I assume you need to make these ports available to the Internet? If this is the case your rules are not correct.

    NAT should look like this:

    Source (Original): ANY
Source (Translated): Original

Destination (Original): X6 IP  or  McLeod API Public
Destination (Translated): McLeod API Private

Service: McLeod API

    Your Access Rule should look like this:

    FROM: WAN
TO: LAN
Service: McLeod API
Source: ANY
Destination: X6 IP  or  McLeod API Public

    This is how you publish a Service to the WAN.

    Hopefully this is what you're looking for, if not please provide some extra details.

    --Michael@BWC

Sign In or Register to comment.