Menu

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

Outbound NAT + Access Policy (Firewall) Rule

ArminFArminF Newbie ✭
in Entry Level Firewalls

Hi All,

i setup a NAT to collect all NTP traffic and route it to some dedicated servers on the WAN.

I also setup a firewall rule but this shows no hits but the NAT does.

Would an outbound NAT not need a firewall rule?


thanks for enlighten me. New firewall new questions :)

cheers armin

Category: Entry Level Firewalls
Reply

Best Answer

  • CORRECT ANSWER
    BWCBWC Cybersecurity Overlord ✭✭✭
    Answer ✓

    @ArminF to the best of my knowledge the LAN -> WAN Rule needs to be SRC: LAN / DST: ANY / SVC: NTP / Action: Allow.

    This will allow any NTP Traffic but your NAT Rule will force the requests to your dedicated NTP Server.

    The reason why your Rule is not showing any Hits, is probably because you set the Destination Address in your Rule to the enforced NTP Server, which is not correct, because Access Rules covering the traffic BEFORE NAT, therefore the Rule only hits for the original NTP Server, like time.windows.com etc.

    --Michael@BWC

Answers

  • ArminFArminF Newbie ✭

    The Alps... Wonderfull .. We do live in Switzerland.


    Greetings Michael!

    Thanks for the hint with the Firewall Rule. Correct i set the Destination to the enforced NTP server.

    Changed it now and will see if i got hits

    2022-08-21_11-53-48.png
    2022-08-21_11-54-20.png

    .

Sign In or Register to comment.