Anybody know how I can create a port forward or better a access rule to a VLAN IP? I have a VLAN for my voice network on 192.168.2.0 and would like one IP on it to be accessible on port 8080 to a web interface of the phone system. Preferably I would like to only allow it from specific IP addresses. I’m not having any luck getting this to work so I must be missing a step.
With a public IP on the WAN, you can easily forward port 8080 to the 192.168.2.0 phone system on a separate VLAN. Inbound firewall rules control access to only allow it from a specific IP address.
I also have this inbound firewall rule. I can get to this web interface from inside the network or through a VPN but I’m having no luck on the port forward with these two screenshots. Am I missing a step?
The source port should be “Any” in case the source is behind a NAT router. For a quick test you can open web admin to port 8080 on the WAN to see if you can connect to the router.
I changed the source port to any and still nothing. If I change the web admin to port 8080 it will get to the management interface.
OK, so if 192.168.2.254 has a default gateway of the Balance this should work. Firewall rule event logging and a network capture from the Balance will help to identify the issue.
You found it!! When you mentioned gateway I realized the gateway on the previous firewall 192.168.2.2 for some reason. After having that corrected all is working as it should be. Thanks!!!
Glad to hear it is working. I see a ticket was opened for this so I will close it.