07-23-2021 06:34 AM
Using a Cisco RV325 Dual Band router and generally it is working fine. However, I'm a bit confused about firewall access rules and port forwarding rules, what they do and when are they needed.
I recently wanted to allow port 80 to go to a test computer on LAN address 10.0.1.92. So I configured rules 1&2 in the figure below
That did not work. I also had to add a Port Forwarding rule for port 80 to 10.0.1.92 and then port 80 traffic arrived at the target address. I subsequently, accidently disabled rules 1&2 above, a surprisingly port 80 traffic continued to arrive a the target address (10.0.1.92). Thus, it would seem that the Firewall access rule was doing nothing??
So the real question here is: When do I use firewall rules and what are they really doing? When do I need to use port forwarding rules?
What if I really wanted to deny all port 80 traffic coming in on WAN2 regardless of it destination? For example, is rule 3 doing anything?
Thanks...RDKCisco1
07-23-2021 07:10 AM
how is your out going traffic, i feel you need to have control over NAT Route, if you are Loadbalacing you may see this issue.
1. make sure you looking to incomning traffic, they need to use same path to go out.
2. if you want to block WAN2, you need deny, but as per the ACE/ACL you allowing WAN2 and Deny WAN1
07-23-2021 10:01 AM
This reply does not seem to be addressing my question and really does not make any sense to me...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide