Got it
Huawei Enterprise Support Community
Community Forums Security
How to forward tcp packet...

How to forward tcp packets on a single port on firewall usg6300

Latest reply: Aug 2, 2018 02:58:29 1257 3 0 0 0
View the author 1#

Issue Description

Software Version: USG6300 V100R001C30SPC600  


Wants to permit access to a tcp port and i configured nat server but it didn't work.

He had a cctv server on my dmz. The ip is 192.x.x.y. And it has a web service on custom port 8000.

When i am on a pc on the dmz lets say with ip 192.x.y.z and i open a web browser and enter:  192.x.x.y:8000   then it opens the web service. 

What he need to do is to access this web service when i am in the internet, so his wan ip on the firewall is 93.109.247.250.

On the firewall is configured nat server like this: nat server cctv_web protocol tcp global 9*.1**.x.250 8000 inside 192.x.x.y 8000 no-reverse but it didn't work.

I've verified the configuration and checked the documentation, after all i've found that source-port 8000 is also in the command, but only the destination port 8000 should be.


Solution

I found that was selected also the source-port 8000. 

I suggest  to remove it and to test again.

Should appear like below:


ip service-set CCTV_web_browser type object

description for CCTV server access via web browser over the internet

service 0 protocol tcp destination-port 8000


Suggestions

I found that was selected also the source-port 8000.  I suggest  to remove source-port 8000.  To be like service 0 protocol tcp destination-port 8000


Like (0) Dislike (0) Favorite(0) Share Report
Previous: Remove the gateway interface in USG6600
Next: How to build IPSEC VPN between USG6000 and CISCO ASA
(0) (0)
2#
IbrYsf
Created Jul 30, 2018 08:09:30

"If the public IP address of the server is not the IP address of a WAN interface on the firewall, you must set a blackhole route to the post-NAT public IP address of the server on the firewall to prevent routing loops between the firewall and its upstream device"

kindly refer to
http://support.huawei.com/enterprise/en/doc/EDOC1000091532
View more
  • x
  • convention:
(2) (0)
3#
Torrent
Created Aug 2, 2018 01:27:41

It is very a good example. marked!How to forward tcp packets on a single port on firewall usg6300-2712725-1
View more
  • x
  • convention:
(2) (0)
4#
faysalji
Author Created Aug 2, 2018 02:58:29

Thanks for the suggested solution
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.