I port forwarded, but why is port still closed?

[eiger3790]

Hello, please help me port forward VNC 5900 for remote viewing.
I'm running vm router OPNsense 23.1.11_1-amd64
FreeBSD 13.1-RELEASE-p8
OpenSSL 1.1.1u 30 May 2023

These are the steps I processed:
Guide for Ubuntu, Access a remote desktop. https://ubuntu.com/tutorials/access-remote-desktop#1-overview

1: Ubuntu 22.04.3 LTS jammy > Sharing is turned on.

2: VMM 4.0.0 is running VM OPNsense port forwarded to 3389 for RDP as well as 5900 and 5901 for VNC.
OPNsense > Firewall > NAT > Port Forward >

• Interface: WAN, Proto: TCP, Address: *, Ports: *, Address: WAN address, Ports: 3389 (MS RDP), IP: 192.168.1.120, Ports: 3389 (MS RDP), Description: RDP.
• Interface: WAN, Proto: TCP, Address: *, Ports: *, Address: WAN address, Ports: 5900 (VNC), IP: 192.168.1.120, Ports: 5900 (VNC), Description: VNC 5900.
• Interface: WAN, Proto: TCP, Address: *, Ports: *, Address: WAN address, Ports: 5901, IP: 192.168.1.120, Ports: 5901, Description: VNC 5901.
  

3: I tested the port is forwarded, GRC Shields UP shows 3389, 5900 and 5901 have the status: stealth.

4: I also tested from my phone's RealVNC app with publicWanIP, publicWanIP:3389, publicWanIP:5900 and publicWanIP:5901, but error: The connection attempt timed out.

[eiger3790]

Whilst attempting to remotely connect from my phone's RealVNC app,
I ran OPNsense's Packet Capture on Interfaces WAN and LAN for port 5900 and no traffic.

I ran OPNsense's Packet Capture on Interfaces WAN and LAN for all ports and traffic.

I ran Ubuntu's GUFW and the report shows:
No 2;
Protocol TCP6;
Port 3389;
Address *;
Application gnome-remote-desktop-daemon.

No 3;
Protocol TCP6;
Port 5900;
Address *;
Application gnome-remote-desktop-daemon.

The GUFW report doesn't show port 5901?

Not sure why packets from phone aren't shown on OPNsense or Ubuntu's traffic analysis?

[eiger3790]

This is my home network topology: