"
Does anyone have a workaround?
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#1
20.7 Legacy Series / Re: Source Address being stripped from port forward NAT
August 09, 2020, 03:17:23 PM #2
20.7 Legacy Series / Re: Source Address being stripped from port forward NAT
August 03, 2020, 09:06:07 PM
Anyone have any thoughts?
#3
20.7 Legacy Series / Source Address being stripped from port forward NAT
August 02, 2020, 10:11:13 PM
I have an Inbound port forward rule in when traffic traverses the NAT, the source IP is being stripped and replaced with the firewalls IP so the application thinks it's talking to the firewall instead of the public device. I need to preserve the originating address for this application. How can I do this?
#4
18.7 Legacy Series / Re: Has anyone ever got TFTP-Proxy working?
January 30, 2019, 03:39:53 AM
So does anyone else have any thoughts on how to get tftp for a Cisco phone through the firewall?
#5
18.1 Legacy Series / Re: TFTP Proxy
January 28, 2019, 08:22:33 PM
Were you able to get this working?
#6
18.7 Legacy Series / Re: Has anyone ever got TFTP-Proxy working?
January 27, 2019, 03:19:48 PM
Not sure I understand what you're asking. Are you saying to port forward it? TFTP responds on a random UDP 1024> and the firewall rejects it. I've port forwarded that range back into the internal host but the FW re-writes the port number so the host no longer knows what to do with it.
#7
18.7 Legacy Series / Re: Has anyone ever got TFTP-Proxy working?
January 27, 2019, 01:35:48 PM
Anyone? How about an alternative method?
#8
18.7 Legacy Series / Re: Has anyone ever got TFTP-Proxy working?
January 25, 2019, 05:49:49 PM
FYI, I've added this:
<?php
function tftpproxy_enabled()
{
return true;
}
function tftpproxy_firewall($fw)
{
if (!tftpproxy_enabled()) {
return;
}
$fw->registerAnchor('tftp-proxy/*', 'nat');
$fw->registerAnchor('tftp-proxy/*', 'rdr');
$fw->registerAnchor('tftp-proxy/*', 'fw');
}
And I've added this:
tftp dgram udp wait root /usr/libexec/tftp-proxy tftp-proxy -v
I reloaded the services after that.
Thanks
<?php
function tftpproxy_enabled()
{
return true;
}
function tftpproxy_firewall($fw)
{
if (!tftpproxy_enabled()) {
return;
}
$fw->registerAnchor('tftp-proxy/*', 'nat');
$fw->registerAnchor('tftp-proxy/*', 'rdr');
$fw->registerAnchor('tftp-proxy/*', 'fw');
}
And I've added this:
tftp dgram udp wait root /usr/libexec/tftp-proxy tftp-proxy -v
I reloaded the services after that.
Thanks
#9
18.7 Legacy Series / Re: Has anyone ever got TFTP-Proxy working?
January 25, 2019, 05:46:27 PM
When I send the tftp request, the reply is being blocked.
#10
18.7 Legacy Series / Re: Has anyone ever got TFTP-Proxy working?
January 25, 2019, 02:08:27 PM
I followed the what previous users did, but I'm not sure it's working properly. I don't see it starting.
#11
18.7 Legacy Series / Has anyone ever got TFTP-Proxy working?
January 25, 2019, 01:46:16 AM
There was a post a while back with a link to GitHub but nothing that was firm.
#12
18.7 Legacy Series / Re: allow all UDP from internet host
January 24, 2019, 03:13:41 PM
I should stipulate in this that I would be locking it down to one internet host. So basicly it looks like: OUTSIDE HOST->UDP-10000:20000->FW->NAT->UDP-10000:20000->INTERNAL HOST for example.
#13
18.7 Legacy Series / allow all UDP from internet host
January 24, 2019, 03:14:28 AM
I need to allow all UDP traffic to hit a NAT policy that forwards to a single inside host. when making the NAT rule, I'm forced to enter a destination port. once the policy is applied, I see the inbound UDP traffic redirected to that port. I need the original destination port preserved. Now can I do that?
Thanks in advance!
-Bill
Thanks in advance!
-Bill
Pages1
