Ok, clearly I wasn't clear. The 2Wire does port forward from the 68.251.1.1 to 192.168.1.99 (its internal address is 192.168.1.254/24). A similar port forward was working before installing EFW so, I pretty sure that I have it configured correctly. I'm guessing here that due to the translation done by the 2wire, that the "target" address will now be 192.168.1.99.
I'm thinking of backing out to EFW 2.2, I hear that it is much easier to configure. -----Original Message----- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Friday, January 15, 2010 4:00 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] How to configure a basic "Port forward" in EFW 2.3 I am not sure, but I don't think it will be possible for you to forward traffic from the internet to your server. You say that your public IP is 68.251.1.1 (or something else similar). I'm guessing that this is what your WAN interface on your 2Wire DSL modem is set to. This 2Wire modem then has an internal interface of 192.168.1.99? Unless you are able to tell your 2wire to do port forwarding itself, it will never pass traffic into the 192.168.1.0 network. Since it can't pass the data to the Endian Firewall, the Endian Firewall wouldn't be able to send it on to your SBS server. Now, if you could acomplish the forwarding by the 2Wire, then you would just have to create a Firewall Nat rule to forward the same appropriate traffic in to 10.99.1.1. To do that in 2.3, I go to Firewall -> Port forwarding / NAT -> Destination NAT -> Add a new destination NAT rule. I hope that helps. --Matt Ross Ephrata School District ----- Original Message ----- From: Thomas Goodson [mailto:thomas.good...@omega-link.com] To: efw-user@lists.sourceforge.net Sent: Thu, 14 Jan 2010 23:20:38 -0800 Subject: Re: [Efw-user] How to configure a basic "Port forward" in EFW 2.3 > That chain left me more confused than I was before. > > > > My environment: public static ip: 68.251.1.1 (not the actual address, > but it’ll do for this example) > > The public static IP is routed by a 2Wire DSL Modem/router to > 192.168.1.99 (I have no control over this part of the process) > > My EFW Box is setting with its RED interface at 192.168.1.99 and green > at 10.99.1.254. > > I have an SBS box at 10.99.1.1. I want traffic sent to 68.251.1.1 on > port > 25 to be routed to my SBS box at 10.99.1.1. Should be simple, but it > isn’t. I’ve tried just about everything that I can think of. > > ** Tom ** > > > > From: jonas kellens [mailto:jonas.kell...@telenet.be] > Sent: Thursday, January 14, 2010 3:15 PM > To: efw-user@lists.sourceforge.net > Subject: Re: [Efw-user] How to configure a basic "Port forward" in EFW > 2.3 > > > > Hi Tom, > > this discussion on the mailinglist can give you the answer : > http://www.mail-archive.com/efw-user@lists.sourceforge.net/msg04742.ht > ml > > Jonas. > > On Thu, 2010-01-14 at 13:36 -0500, Thomas Goodson wrote: > > Ok, I’ve just downloaded EFW 2.3 and it looks great, but how do I > configure a basic port forwarder? For example, I want to forward all > traffic to port 25 on my RED (192.168.1.x) interface to the IP > 10.99.1.1 on the GREEN interface. > > > > Later, I would like to forward incoming port 33389 on RED to > 10.99.1.2:3389 on GREEN. > > > > Thanks in advance. > > > > ** Tom ** > > > > ------------------------------------------------------------------------------ Throughout its 18-year history, RSA Conference consistently attracts the world's best and brightest in the field, creating opportunities for Conference attendees to learn about information security's most important issues through interactions with peers, luminaries and emerging and established companies. http://p.sf.net/sfu/rsaconf-dev2dev _______________________________________________ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user ------------------------------------------------------------------------------ Throughout its 18-year history, RSA Conference consistently attracts the world's best and brightest in the field, creating opportunities for Conference attendees to learn about information security's most important issues through interactions with peers, luminaries and emerging and established companies. http://p.sf.net/sfu/rsaconf-dev2dev _______________________________________________ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
