D-Link Forums

The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: lezde716 on September 10, 2010, 08:46:36 PM

Title: dfl-800 port forwarding
Post by: lezde716 on September 10, 2010, 08:46:36 PM: my network is look like this dsa-3100-->dfl-800-->switch-->servers and client PC

my problem is how do I port forward a server or a client PC which are is inside in my network which I want to access outside. I already port forward the machine in dsa-3100 before and I can access it outside, but when I put the dfl-3100 after my dsa-3100 I cannot access the machine at all. Please Help.
Title: Re: dfl-800 port forwarding
Post by: danilovav on September 10, 2010, 09:43:56 PM: You need make two rules
SAT wan/all-nets core/wan_ip yourservice (SAT: new destination = yourprivatehost)
Allow wan/all-nets core/wan_ip yourservice
Client should accept external connections and have DFL as default gateway. If you can change this policies, change second rule - action from Allow to NAT.
Title: Re: dfl-800 port forwarding
Post by: SephirothsHell on January 07, 2011, 08:51:58 AM: I'm having similar problems but I really don't understand the logic so far...

In my case the network looks like this: Cisco 2611 (ISP) --> DFL-800--> Switch-->Server and Client PCs

I receive the following instruction: "configure the Router (create a NAT) so that all external requests to our public IP address on HTTP (80); HTTPS (443); SMTP (25); and POP (110) ports are redirected to the mail server".

Then I configure this on the DFL-800:

******************************************************************************

Name Action Source Destination Service

HTTP_Forward NAT wan1 Server http
HTTPS_Forward NAT wan1 Server https
SMTP_Forward NAT wan1 Server smtp
POP_Forward NAT wan1 Server pop

*****************************************************************************
Now, that configuration was supposed to make our mail server available but we are not currently able to receive any email messages.

What am I doing wrong?
Title: Re: dfl-800 port forwarding
Post by: silver_surfer30 on January 11, 2011, 05:12:37 PM: SephirothsHell; if you follow the previous nessage as it is and have no joy that may be due to the fact that Cisco is acting also as nat device and then you may need to create the same rule on the cisco and redirect thise to the wan1 ip of DFL.

Best solution is to configure cisco in bridge mode.
Title: Re: dfl-800 port forwarding
Post by: SephirothsHell on January 12, 2011, 02:21:15 PM: Quote from: silver_surfer30 on January 11, 2011, 05:12:37 PM
SephirothsHell; if you follow the previous nessage as it is and have no joy that may be due to the fact that Cisco is acting also as nat device and then you may need to create the same rule on the cisco and redirect thise to the wan1 ip of DFL.

Best solution is to configure cisco in bridge mode.

Thanks for the tip.
I followed the steps posted here: http://forums.dlink.com/index.php?topic=16442.msg94270#msg94270
and it worked like a charm...!!! ;D
Title: Re: dfl-800 port forwarding
Post by: lezde716 on April 13, 2011, 12:00:30 AM: Quote from: danilovav on September 10, 2010, 09:43:56 PM
You need make two rules
SAT wan/all-nets core/wan_ip yourservice (SAT: new destination = yourprivatehost)
Allow wan/all-nets core/wan_ip yourservice
Client should accept external connections and have DFL as default gateway. If you can change this policies, change second rule - action from Allow to NAT.

Thank you dan. I follow this and it works. This is what I did.
address book--> add virtual ip of my server
then follow the configuration stated above.

Weeeeheeee...