• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

SOLVED: NAT / Rules (port forwarding) Issue

Scheduled Pinned Locked Moved Firewalling
3 Posts 2 Posters 716 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • R
    ragnarXYZ
    last edited by Oct 8, 2016, 4:12 PM Oct 7, 2016, 4:47 PM

    I have the SG-2220 with the latest firmware (2.3.2). I have a Synology NAS running OwnCloud that works perfectly on my intranet, however I'm unable to connect to it externally. I have assigned port 81 (http) and 4331 (https) on the NAS and OwnCloud; again this works on the Intranet. When I attempt to connect remotely however via DDNS, I cannot connect. If I connect to XXX.XXX.XXX.XXX without a port, it does hit my SG-2220 as I get the pfSense error message that states:

    Potential DNS Rebind attack detected, see http://en.wikipedia.org/wiki/DNS_rebinding
    Try accessing the router by IP address instead of by hostname.

    However, when I go to xxx.xxx.xxx.xxx:81 (or :4331) I get "This site can’t be reached"; I have used both Safari and Chrome with the same results.

    I assume it's something wrong with my port forwarding rules, however I had this working before so I have no clue.

    A slightly different topic and this could be relevant. Last week I had a DHCP reservation that was not taking. I backed-up my config, went to factory defaults, and then did a restore of the config. Once I did this the DHCP reservation begin to work.

    Any help would be greatly appreciated.
    ![Screen Shot 2016-10-07 at 10.28.53 AM.png](/public/imported_attachments/1/Screen Shot 2016-10-07 at 10.28.53 AM.png)
    ![Screen Shot 2016-10-07 at 10.28.53 AM.png_thumb](/public/imported_attachments/1/Screen Shot 2016-10-07 at 10.28.53 AM.png_thumb)
    ![Screen Shot 2016-10-07 at 10.29.05 AM.png](/public/imported_attachments/1/Screen Shot 2016-10-07 at 10.29.05 AM.png)
    ![Screen Shot 2016-10-07 at 10.29.05 AM.png_thumb](/public/imported_attachments/1/Screen Shot 2016-10-07 at 10.29.05 AM.png_thumb)

    1x SG-2220 2.4.3-RELEASE (test)
    1x XG-7100 2.4.3-RELEASE (home)

    1 Reply Last reply Reply Quote 0
    • K
      KOM
      last edited by Oct 7, 2016, 5:20 PM

      Your rules look ok to me.  It must be something else.

      1 Reply Last reply Reply Quote 0
      • R
        ragnarXYZ
        last edited by Oct 8, 2016, 4:11 PM

        SOLVED.

        I was attempting to connect to the DDNS address from my intranet (192.168.x.x) address which was causing the issue. As soon as I used a VPN or went to the local coffee shop it worked.

        1x SG-2220 2.4.3-RELEASE (test)
        1x XG-7100 2.4.3-RELEASE (home)

        1 Reply Last reply Reply Quote 0
        1 out of 3
        • First post
          1/3
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
          This community forum collects and processes your personal information.
          consent.not_received