Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    When something says "open ports"…

    Scheduled Pinned Locked Moved Firewalling
    4 Posts 2 Posters 911 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      Mothra
      last edited by

      I'm trying to get Resilio Sync optimized on my network so one offsite box can make a direct connection and not go through a relay… the Resilio documentation lists some ports required for basic functionality (besides the port forwarding specific to each machine's listening port) which are listed in their config file:

      http://config.getsync.com/sync.conf

      So my question is… when their documentation says to "open ports" that several machines on the LAN will be using simultaneously, do I enter those ports (I have an alias with all of them) on the WAN page since multiple machines will be using those ports? (Attached is the screenshot of how it's currently set up)

      This could be a security nightmare and I don't even know it, so I'm leaning on the expertise of the users here ;)

      Here's their full documentation on set up:

      https://help.resilio.com/hc/en-us/articles/204754759-What-ports-and-protocols-are-used-by-Sync-

      Any insight would be much appreciated!
      Capture.PNG
      Capture.PNG_thumb

      1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator
        last edited by

        attaching your images would be helpful vs links to stuff that is blocked by many company firewalls.

        imgur.com is blocked by many a corp firewall for "Media Sharing;Mixed Content/Potentially Adult"

        I can bypass that easy enough ;)  But why not just attach directly to the post..

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        1 Reply Last reply Reply Quote 0
        • M
          Mothra
          last edited by

          @johnpoz:

          attaching your images would be helpful vs links to stuff that is blocked by many company firewalls.

          imgur.com is blocked by many a corp firewall for "Media Sharing;Mixed Content/Potentially Adult"

          I can bypass that easy enough ;)  But why not just attach directly to the post..

          Sorry… every time I attach an image, it never works... think it might be an Edge thing, I'll try again with Chrome

          1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator
            last edited by

            That doesn't look to be a valid port forward.. That just looks like you created a rule on your firewall to all whatever is in those ports to ANY.. Which is just going to be your wan interface anyway.  Its not going to be forwarded inbound to anything.

            If you want unsolicited traffic that hits your wan IP to be forwarded to something inside then you need to create a port forward.  Your others look like port forwards to 192.168.1.2 and 192.168.1.20 for 443.  I am not a fan of opening up my plex server to the planet.. I lock it down to the users IP directly (my sons IPs)  When I want to access it from my phone I vpn.. But that would be another subject.

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.8, 24.11

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.