Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Block external access to office IP adddress

    Scheduled Pinned Locked Moved Firewalling
    3 Posts 3 Posters 480 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      asifmalik
      last edited by

      We have created a NAT rule to our internal intranet server
      I need to allow only 2 or 3 external IP addresses to this over the internet

      How do I secure this port to only allow those ips?

      1 Reply Last reply Reply Quote 0
      • KOMK
        KOM
        last edited by

        A port-forward is a NAT rule plus a firewall rule.  To restrict access to your NAT, simply specify proper sources.  Create an alias and then fill it with the IP addresses you want to allow, then use that alias as the Source on your WAN firewall rule.

        1 Reply Last reply Reply Quote 0
        • DerelictD
          Derelict LAYER 8 Netgate
          last edited by

          Or use it as the source on your port forward rule and it will automatically propagate to the firewall rule in the default configuration where the firewall rule is created and tracked by the port forward.

          Chattanooga, Tennessee, USA
          A comprehensive network diagram is worth 10,000 words and 15 conference calls.
          DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
          Do Not Chat For Help! NO_WAN_EGRESS(TM)

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.