Filtering by source IP address not working in access rules

manuelmace84 · ‎01-27-2022

Hi all,

We have RV340 as LAN firewall. I am trying to open one port, but only for 2 remote IPs (not for all the internet). I tryed with this configuration for access rules.

In that way service it´s open for all the internet. Am i doing something wrong?

Thank you.

balaji.bandi · ‎01-27-2022

that is the access rule, you need to do NAT also right.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

manuelmace84 · ‎01-27-2022

Yes, I have the service enabled and configured in Port Forwarding Table: Internal service, internal IP address & interface (WAN1).

I can access to the service. This is not the problem. I want it open but only for two remote IPs, not for all the internet.

balaji.bandi · ‎01-27-2022

Lets test with out any source IP mentioned, see if that works, before we move to next level ?

check port forward :

https://www.cisco.com/c/en/us/support/docs/smb/routers/cisco-rv-series-small-business-routers/smb5818-configure-port-forwarding-port-triggering-nat-on-rv34x-serie.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

manuelmace84 · ‎01-27-2022

I can access to the service from all remote IPs. The same that before.

Georg Pauwen · ‎01-27-2022

Hello,

under 'Source' and 'Destination' there used to be an option for 'Single IP', not sure that is still there, but make sure that is selected.

manuelmace84 · ‎01-27-2022

Yes, I did; but with this rule port appear open for all the internet.

Georg Pauwen · ‎01-28-2022

Hello,

what if you change the schedule from ANYTIME to an actual time range ?

manuelmace84 · ‎01-28-2022

Hi Georg,

I just tried but it´s the same. Open for all IPs.

Georg Pauwen · ‎01-28-2022

Hello,

really odd, but I do recall that the SMB routers are often quirky. Are you in a position to start from scratch, reset the router to factory defaults, and configure everything again ?

balaji.bandi · ‎01-28-2022

Looks like some tweak need to be done here, i do not have device to replicate this issue, let me read docs and get back to if i find any clue.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

manuelmace84 · ‎01-28-2022

Ok. Thank you for that.

Georg Pauwen · ‎01-27-2022

Hello,

could be related to the firmware, which one are you running ? Release 1.0.03.24 is the latest...

manuelmace84 · ‎01-27-2022

Yes. I installed 1.0.03.24 release several weeks ago.

manuelmace84 · ‎01-28-2022

Hi all,

I found that when I create a new service in port forwarding table, new row appear at the bottom in the access rules table. I´m not able to manage this row, priority it´s predefined with a number over 1000.

Even if I create a new deny access rule with higher priority for this service, this automatic access rule prevails over the other, and access to this port still enabled.

How should I edit this access rule?? I´m not able to change priority either.