Port forwarding on VPN100 doesn't work
Freshman Member
hello
I'm trying since some days to get a certain port forwarded to ony of my clients and I don't get it to work. maybe some basics first:
- got a fritzbox as modem AND router first (unfortunately there's no bridge mode)
- zyxel vpn100 is connected over WAN port to the fritzbox, get's an internal IP-address of fritzbox
- all other clients are connected through vpn100 - dhcp on vpn100 is activated so the whole ip-network is managed bei vpn100 dhcp
i don't get it to work for one simple client to open the port 32400 for outside communication. for some details: there is a synology NAS working with plex server.
- port 32400 is forwarded on fritzbox for the whole vpn100 network
next to vpn: at object, i created an address and a geo IP:
at seczruty policy, i created a new entry at policy control:
last but not least the network → NAT entry:
i am pretty sure there is something i didnt understand so far…maybe some1 can help me to get this work. if you need some more informations please let me know what you need.
regards
begg
Accepted Solution
-
hey there
got the solution….i just tried and set some params until it worked…try and error…it's a little bit annoying but now it works…i had to set up the nat any to any…see the differences if you're interested in (left side old params / right side new params):
1
All Replies
-
Does traffic for port 32400 get to VPN100 WAN1 port when you run packet capture and run a probe https://www.grc.com/port_32400.htm
0 -
you mean i should try another port right? mayb my isp blocks this port…will try another one
0 -
He suggests to test if the first step (forward from Fritz to VPN100) works.
Looking at your screenshots, I don't understand why are you setting "Plex Synology WAN IP" as WAN IP of VPN100.
When Fritz forwards port, connection that reaches VPN100 WAN has Fritz IP as source address, not WAN IP of VPN100.
1 -
policy rule for source address may need to be any
0 -
Or, at least, LAN IP of Fritz. Even if it's likely the same, since I don't think there are other devices between Fritz and VPN100.
For sure it cannot work the way is set now.
0 -
hey there
got the solution….i just tried and set some params until it worked…try and error…it's a little bit annoying but now it works…i had to set up the nat any to any…see the differences if you're interested in (left side old params / right side new params):
1
Guru Member
Ally Member
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 144 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 237 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 384 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight
