Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

firewall config

0 views
Skip to first unread message

jdrott1

unread,
Apr 15, 2008, 7:14:13 PM4/15/08
to
i have a Firebox® X Edge E-Series router i just installed. i have no
problems getting out to the internet after setting up the box. i
can't seem to figure out the incoming connections for rdp and http.
i've opened port 80 and directed the traffic to my webserver (vista
business iis 7.0) and port 3389. the browser says my webpage can not
be found. anything i missed?

Phillip Windell

unread,
Apr 16, 2008, 11:49:51 AM4/16/08
to
It is a firewall, not a router,...it may not seem like it, but that is an
important distinction.

You don't "open a port". You create/add either "proxies" or "filters"
according to Watchgaurd terminology. Within them you define the Source, the
Protocol, the Method (NAT in this case) and the object of the method which
is the IP# of the machine you are sending to. HTTP is already predefined in
both "Proxy" form and "Filter" form with the "Filter" form being less
complex than the "Proxy", but they can both accomplish the same thing more
or less.

RDP is probably not predefined and you would have to do that yourself.
However I would *not*. I would never make a machine directly available to
the Internet with Remote Destop. I would use VPN,...the user connects first
by VPN then connects to the machine with RDP after that,...this means they
have to get past two entirely separate authentication methods (VPN
[Watchgaurd] then RDP [Windows Auth]). You do want the LAN secure, right?

Do not confuse the different types of VPN. VPN is not just simply VPN.
There is Remote Access VPN and Site-to-Site VPN. Watchguard calls the
remote VPN by the term "RUVPN" (Remote User VPN) and their Site-to-Site VPN
is "ROVPN" (Remote Office VPN, assuming they haven't changed their
terminology since I seen it last. The two VPN types are entirely different,
work differently, and have different purposes, so use the right one. For
this situation you want RUVPN (Remote User VPN)

See the Watchgaurd Documentation for details or call their Live Security
Support, that's what they are there for and you are already paying them for
that anyway with the Live Subscription costs.

I no longer have a Watchgaurd box and do not have the Admin Tool runing on
anything to look at so I have to go entirely by memory,..and I'm getting old
and forgetfull,..so I am probably at the limit of what I can do for you.


--
Phillip Windell
www.wandtv.com

The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------

"jdrott1" <jonath...@gmail.com> wrote in message
news:096dacaa-ed52-4571...@26g2000hsk.googlegroups.com...

0 new messages