+ Post New Thread
Results 1 to 9 of 9
Internet Related/Filtering/Firewall Thread, Smoothwall Port Forwarding in Technical; Hey people, I am wanting to send traffic coming onto my RED nic to an address on my GREEN nic, ...
  1. #1
    danrhodes's Avatar
    Join Date
    Sep 2008
    Location
    Wath Upon Dearne
    Posts
    1,513
    Thank Post
    157
    Thanked 181 Times in 150 Posts
    Rep Power
    68

    Smoothwall Port Forwarding

    Hey people,

    I am wanting to send traffic coming onto my RED nic to an address on my GREEN nic, I have setup the correct port forwarding on the SM,

    Red Eth0 Pt80 TCP Net:Any --> Green Eth1 Pt80 TCP Net:192.168.1.10

    and also on my router to send all traffic to the default DMZ or 192.168.0.2 wich is the IP of my RED nic.

    Im also using DynDNS on my router which is working fine. But for some reason when I try to connect by using either the DynDNS or the actual IP it does not work I get a (111) Connection refused??

    Any help would be great!

    Dan

  2. #2

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,172
    Thank Post
    868
    Thanked 2,699 Times in 2,288 Posts
    Blog Entries
    11
    Rep Power
    772
    Assuming that smoothwall and your router have some logging ability you could try to access it then see which device complains in its log.

    Also are you attmpting to connect from inside the network to the external address. This configuration can often cause issues if double NATing is not supported by both devices. You should check from another net connection external to host one. Could use a phone browser on 3g for instance.

  3. #3

    Join Date
    Mar 2009
    Location
    West Yorkshire
    Posts
    67
    Thank Post
    12
    Thanked 6 Times in 6 Posts
    Rep Power
    16
    Silly thought but do you actually have a valid out going rule setup to allow port 80 traffic out? Some default 'closed' installs can be set with no outbound rules. Traffic could be getting in, but then having no route out again.

  4. #4


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,475
    Thank Post
    866
    Thanked 849 Times in 671 Posts
    Rep Power
    196
    An outbound rule isn't needed if you haven't set up a "default deny" earlier.

  5. Thanks to tom_newton from:

    chinesewhispers (20th January 2010)

  6. #5

    Join Date
    Mar 2009
    Location
    West Yorkshire
    Posts
    67
    Thank Post
    12
    Thanked 6 Times in 6 Posts
    Rep Power
    16
    My coat's around here somewhere...

  7. #6


    tom_newton's Avatar
    Join Date
    Sep 2006
    Location
    Leeds
    Posts
    4,475
    Thank Post
    866
    Thanked 849 Times in 671 Posts
    Rep Power
    196
    Sorry, didn't get chance to make more than a cursory reply yesterday. It looks like you are double NATing (thanks clippy!) Have you tried putting a laptop on the network just between your router and your smoothie, see if it will port-forward from there? IT may be best to set up your router with port-forwards as well, rather than with one of these wacky DMZs that some routers support.

  8. Thanks to tom_newton from:

    danrhodes (21st January 2010)

  9. #7
    danrhodes's Avatar
    Join Date
    Sep 2008
    Location
    Wath Upon Dearne
    Posts
    1,513
    Thank Post
    157
    Thanked 181 Times in 150 Posts
    Rep Power
    68
    Im going to try this.

    1. Disable DMZ on Router
    2. Setup port forwarding on the router so that HTTP80 traffic routes to my RED Nic
    3. Setup a firewall rule that routes all HTTP80 Traffic through my GREEN Nic to the IP 192.168.1.10 which is a workstation running apache/php.


    Ive had this working before but didn't write it down and with my head being full of many other things it has got pushed out.


    D

  10. #8


    Join Date
    Oct 2006
    Posts
    3,411
    Thank Post
    184
    Thanked 356 Times in 285 Posts
    Rep Power
    149
    Quote Originally Posted by danrhodes View Post
    Im going to try this.

    1. Disable DMZ on Router
    2. Setup port forwarding on the router so that HTTP80 traffic routes to my RED Nic
    3. Setup a firewall rule that routes all HTTP80 Traffic through my GREEN Nic to the IP 192.168.1.10 which is a workstation running apache/php.


    Ive had this working before but didn't write it down and with my head being full of many other things it has got pushed out.


    D
    You're getting things mixed up. Port forwarding goes to your apache pc, firewall rules allow traffic accross the router.

    Im not sure what you mean in your first post about your DMZ. Either im missing what you are trying to do or it isnt possible.

    Thiis bit;
    and also on my router to send all traffic to the default DMZ or 192.168.0.2 wich is the IP of my RED nic.
    Red isnt DMZ. And you cant set it up to forward all traffic to a zone. You can set up a 1 to 1 NAT which forwards to a single computer in your DMZ

    But for some reason when I try to connect by using either the DynDNS or the actual IP it does not work I get a (111) Connection refused??
    Connect to what? And from where?
    Last edited by j17sparky; 21st January 2010 at 12:01 PM.

  11. #9

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,614
    Thank Post
    648
    Thanked 1,618 Times in 1,448 Posts
    Rep Power
    421
    Quote Originally Posted by danrhodes View Post
    Hey people,

    I am wanting to send traffic coming onto my RED nic to an address on my GREEN nic, I have setup the correct port forwarding on the SM,

    Red Eth0 Pt80 TCP Net:Any --> Green Eth1 Pt80 TCP Net:192.168.1.10

    and also on my router to send all traffic to the default DMZ or 192.168.0.2 wich is the IP of my RED nic.

    Im also using DynDNS on my router which is working fine. But for some reason when I try to connect by using either the DynDNS or the actual IP it does not work I get a (111) Connection refused??

    Any help would be great!

    Dan
    What smoothwall product are you trying to do this with?

    Ben

SHARE:
+ Post New Thread

Similar Threads

  1. D-Link DIR-655 router - Port Forwarding or Virtual Server?
    By link470 in forum Wireless Networks
    Replies: 10
    Last Post: 4th January 2012, 05:18 PM
  2. DIR 655 router and port forwarding
    By ICANSEEYOu7687 in forum Wireless Networks
    Replies: 0
    Last Post: 21st September 2009, 11:47 PM
  3. [Ubuntu] IPTables Port Forwarding
    By localzuk in forum *nix
    Replies: 17
    Last Post: 3rd June 2009, 10:18 PM
  4. Cachepilot port forwarding
    By localzuk in forum General Chat
    Replies: 6
    Last Post: 29th October 2008, 08:55 AM
  5. port forwarding problem
    By IA76 in forum Wireless Networks
    Replies: 3
    Last Post: 15th August 2008, 01:29 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •