No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

How to forward tcp packets on a single port on firewall usg6300

Publication Date:  2017-05-25 Views:  408 Downloads:  0
Issue Description

Software Version: USG6300 V100R001C30SPC600  


Customer wants to permit access to a tcp port and i configured nat server but it didn't work.

He had a cctv server on my dmz. The ip is 192.x.x.y. And it has a web service on custom port 8000.

When i am on a pc on the dmz lets say with ip 192.x.y.z and i open a web browser and enter:  192.x.x.y:8000   then it opens the web service. 

What he need to do is to access this web service when i am in the internet, so his wan ip on the firewall is 93.109.247.250.

On the firewall is configured nat server like this: nat server cctv_web protocol tcp global 9*.1**.x.250 8000 inside 192.x.x.y 8000 no-reverse but it didn't work.



Handling Process
I've verified the configuration and checked the documentation, after all i've found that source-port 8000 is also in the command, but only the destination port 8000 should be.
Solution

I found that was selected also the source-port 8000. 


I suggest  to remove it and to test again.

Should appear like below:

 #

ip service-set CCTV_web_browser type object

description for CCTV server access via web browser over the internet

service 0 protocol tcp destination-port 8000

 

Suggestions

I found that was selected also the source-port 8000.  I suggest  to remove source-port 8000.  To be like service 0 protocol tcp destination-port 8000

 

END