Port forwarding VPN-1 Edge X

[Spoonworker]

Hi,

I am trying to put public a server found on my internal network. I have hence added a rule on my VPN box to allow and forward say port 21 for FTP to the internal ip of that server. On the log of my VPN box, I can see the traffic pass thru but I can't ftp by using the external IP of the VPN box.

Can any1 tell me what is wrong in the configuration or the correct way of configuring for port forwarding to work ?

Many thanks,
Rgds,
Brian

[dantro]

Please provide a screenshot or an exact description of your security rule.
Your rule should look like this:

Rule Type: Allow and Forward
Source: WAN (Internet)
Destination: <IP of your internal host>:21
QOS: Default
Log: Yes
Enabled: True


Maybe you have another rule that conflicts with your configured one? Maybe the default gateway on your internal FTP server is wrong? Can you ping your internal FTP server from the firewall?

Best regards,
Danny Trommer
CCSA/CCSE/CCSE+

[Spoonworker]

Thanks for the reply.

I checked on the box and it is the good rule.

WAN --> 192.X.X.X:21

I do get the green line for it on my log. But I still can't get access to it. The server receives the request and responded. But it seems the reply never got to the sender.

Can you help me out pleaz?

Rgds,
Brian

[dantro]

Usually I'd say check the route on the host, but it may also be a NAT problem. On your VPN-1 Edge appliance, goto 'Setup > Tools > Diagnostics'. Scroll down and review the installed NAT rules. If that doesn't help solving your problem, start the packet sniffer from 'Setup > Tools' and fire up Wireshark to inspect the traffic.

Best regards,
Danny Trommer
CCSA/CCSE/CCSE+

[NickBrandson]

why don't you just simply enable the ftp server setting under the Security -> Servers