No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


How to forward tcp packets on a single port on firewall usg6300

Publication Date:  2017-05-25 Views:  485 Downloads:  0
Issue Description

Software Version: USG6300 V100R001C30SPC600  

Customer wants to permit access to a tcp port and i configured nat server but it didn't work.

He had a cctv server on my dmz. The ip is 192.x.x.y. And it has a web service on custom port 8000.

When i am on a pc on the dmz lets say with ip 192.x.y.z and i open a web browser and enter:  192.x.x.y:8000   then it opens the web service. 

What he need to do is to access this web service when i am in the internet, so his wan ip on the firewall is x.x.247.250.

On the firewall is configured nat server like this: nat server cctv_web protocol tcp global 9*.1**.x.250 8000 inside 192.x.x.y 8000 no-reverse but it didn't work.

Handling Process
I've verified the configuration and checked the documentation, after all i've found that source-port 8000 is also in the command, but only the destination port 8000 should be.

I found that was selected also the source-port 8000. 

I suggest  to remove it and to test again.

Should appear like below:


ip service-set CCTV_web_browser type object

description for CCTV server access via web browser over the internet

service 0 protocol tcp destination-port 8000



I found that was selected also the source-port 8000.  I suggest  to remove source-port 8000.  To be like service 0 protocol tcp destination-port 8000