When something says "open ports"…



  • I'm trying to get Resilio Sync optimized on my network so one offsite box can make a direct connection and not go through a relay… the Resilio documentation lists some ports required for basic functionality (besides the port forwarding specific to each machine's listening port) which are listed in their config file:

    http://config.getsync.com/sync.conf

    So my question is… when their documentation says to "open ports" that several machines on the LAN will be using simultaneously, do I enter those ports (I have an alias with all of them) on the WAN page since multiple machines will be using those ports? (Attached is the screenshot of how it's currently set up)

    This could be a security nightmare and I don't even know it, so I'm leaning on the expertise of the users here ;)

    Here's their full documentation on set up:

    https://help.resilio.com/hc/en-us/articles/204754759-What-ports-and-protocols-are-used-by-Sync-

    Any insight would be much appreciated!


  • LAYER 8 Global Moderator

    attaching your images would be helpful vs links to stuff that is blocked by many company firewalls.

    imgur.com is blocked by many a corp firewall for "Media Sharing;Mixed Content/Potentially Adult"

    I can bypass that easy enough ;)  But why not just attach directly to the post..



  • @johnpoz:

    attaching your images would be helpful vs links to stuff that is blocked by many company firewalls.

    imgur.com is blocked by many a corp firewall for "Media Sharing;Mixed Content/Potentially Adult"

    I can bypass that easy enough ;)  But why not just attach directly to the post..

    Sorry… every time I attach an image, it never works... think it might be an Edge thing, I'll try again with Chrome


  • LAYER 8 Global Moderator

    That doesn't look to be a valid port forward.. That just looks like you created a rule on your firewall to all whatever is in those ports to ANY.. Which is just going to be your wan interface anyway.  Its not going to be forwarded inbound to anything.

    If you want unsolicited traffic that hits your wan IP to be forwarded to something inside then you need to create a port forward.  Your others look like port forwards to 192.168.1.2 and 192.168.1.20 for 443.  I am not a fan of opening up my plex server to the planet.. I lock it down to the users IP directly (my sons IPs)  When I want to access it from my phone I vpn.. But that would be another subject.


Log in to reply