Firewall rules
-
Trying to port forward 3306 to a specific wan ip address. Doesnt work i have to select any for it to work.
-
@richard_newberry said in Firewall rules:
Trying to port forward 3306 to a specific wan ip address. Doesnt work i have to select any for it to work.
For the source port? Or for what?
-
@viragomann source address and source port.
-
@richard_newberry
The source port of MySQL is dynamic, so it even has to be 'any'.
If the source IP is static and you're know it you can state it in the NAT rule.The destination port is static, it's 3306 by default.
-
@viragomann tried that doesn't work. Only works with any. Is this a bug?
-
@richard_newberry
What exactly are you intending to achieve?
"port forward 3306 to a specific wan ip address" seems not really clear to me. -
@viragomann i only want to port forward 3306 from a specific wan ip address not everybody else.
-
@richard_newberry
So there is a certain WAN address connecting to your WAN at port 3306, and you want to forward this?As I mentioned, if you know the public source IP, you can state it as source in the port forwarding rule. Do you really know the public source IP?
But the source port has to be any, because it's dynamic. -
@viragomann yes i do tried source ip address and source port to any still doesnt work request timed out.
-
@viragomann Can you test this please.
-
@richard_newberry
So I doubt that you stated the correct IP.To check it outs, set the source IP to any, then go to the associated filter rule and enable logging. Access you server from the respective device. Then check the firewall rule and look, which IP is accessing your MySQL server.
-
@viragomann i have the right wan ip address.
-
@richard_newberry
So not clear, why it doesn't work. -
@viragomann must be a bug can it be checked please.