Got it
Huawei Enterprise Support Community
Community Forums Access Network
U2000 behind firewall - P...

U2000 behind firewall - Port Forwarding

Created: Jun 24, 2021 12:25:45Latest reply: Jun 26, 2021 22:02:48 399 10 0 0 0
  HiCoins as reward: 1 (problem unresolved)
View the author 1#

Hi, our U2000 server is behind a firewall, we need to open specific ports to connect OLTs with the U2000 NMS. Currently, SNMP (161 and 162), ICMP and SSH/SFTP (22) are open but when NE Discovery doesn't add the OLT to the NMS. 


SNMP is working, I can do SNMP walk from the server and it successfully return all OIDs. Do we need to open more ports on the firewall? 

Like (0) Dislike (0) Favorite(0) Share Report
Previous: Router B310s-927 API Sending SMS Using PHP
Next: Mac Filter on Huawei DG8045 Router
Featured Answers

Recommended answer

(0) (0)
Chenxintao
Admin Created Jun 25, 2021 01:50:03

Posted by Negoz at 2021-06-25 00:01 This is the design, I just to allow certain ports on the firewall (port forwarding) to bring OLT to ...

Hello, friend!
According to the pictures you provided, is this just a design drawing, or is this the actual topology of the network?
Your question is: Do you fail to add an OLT through the U2000 because the firewall intercepts packets between the device and the U2000? Do you want to solve this problem by forwarding firewall ports?
But in your above information: SNMP is working, I can do SNMP walk from the server and it successfully return all OIDs.
It seems SNMP works again, so I'm not sure if your problem is caused by the firewall.
Please Check whether the community names of the U2000 and NEs are the same when adding NEs.

View more
  • x
  • convention:
All Answers
(0) (0)
2#
jason_hu
jason_hu Admin Created Jun 24, 2021 12:26:46

Hello,
We're working on your problem. Please be patient.
View more
  • x
  • convention:
(0) (0)
3#
Chenxintao
Chenxintao Admin Created Jun 24, 2021 12:27:41

Hi, friend!
Can you provide your U2000 version and OLT model and version? And your city?
Thanks!
View more
  • x
  • convention:
(0) (0)
4#
Negoz
Negoz Created Jun 24, 2021 13:13:55

Posted by Chenxintao at 2021-06-24 12:27 Hi, friend!Can you provide your U2000 version and OLT model and version? And your city?Thanks!
U2000 Version: V200R018C50SPC200
OLT : EA5801-GP08
OLT Version: EA5801V100R019C00
View more
  • x
  • convention:

Chenxintao
Chenxintao Created Jun 24, 2021 13:17:46 (0) (0)
Thank you, my friend!
Please give me a time!  
(0) (0)
5#
Chenxintao
Chenxintao Admin Created Jun 24, 2021 13:52:08

Posted by Negoz at 2021-06-24 13:13 U2000 Version: V200R018C50SPC200 OLT : EA5801-GP08 OLT Version: EA5801V100R019C00
Hi, my friend!
I've read it for a long time, but I don't understand your question. Are you trying to isolate ports?
View more
  • x
  • convention:
(0) (0)
6#
Negoz
Negoz Created Jun 25, 2021 00:01:50

topology

This is the design, I just to allow certain ports on the firewall (port forwarding) to bring OLT to the NMS. 

View more
  • x
  • convention:
(0) (0)
7#
Chenxintao
Chenxintao Admin Created Jun 25, 2021 01:50:03

Posted by Negoz at 2021-06-25 00:01 This is the design, I just to allow certain ports on the firewall (port forwarding) to bring OLT to ...

Hello, friend!
According to the pictures you provided, is this just a design drawing, or is this the actual topology of the network?
Your question is: Do you fail to add an OLT through the U2000 because the firewall intercepts packets between the device and the U2000? Do you want to solve this problem by forwarding firewall ports?
But in your above information: SNMP is working, I can do SNMP walk from the server and it successfully return all OIDs.
It seems SNMP works again, so I'm not sure if your problem is caused by the firewall.
Please Check whether the community names of the U2000 and NEs are the same when adding NEs.

View more
  • x
  • convention:
(0) (0)
8#
Negoz
Negoz Created Jun 25, 2021 02:57:12

Posted by Chenxintao at 2021-06-25 01:50 Hello, friend!According to the pictures you provided, is this just a design drawing, or is this th ...
This is the actual topology. I just need to know the list of TCP/UDP ports I need to open on firewall to add the OLT to U2000. Community Strings are fine.
View more
  • x
  • convention:
(0) (0)
9#
Chenxintao
Chenxintao Admin Created Jun 25, 2021 03:28:20

Posted by Negoz at 2021-06-25 02:57This is the actual topology. I just need to know the list of TCP/UDP ports I need to open on firew ...

Hello, friend!
So, as you say in your question, if ports 161 and 162 are enabled, OLT can be added to the NMS in this topology.

If the addition fails, provide the error information displayed by the system. Then, I can locate the fault.

View more
  • x
  • convention:
(1) (0)
10#
Diego.Silva
Diego.Silva MVE Author Created Jun 26, 2021 22:02:48

In the scenarios I worked on, the U2000-B doesn't work very well behind NAT.
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.