Ports open But / Default deny rule IPv4 (1000000103) blocking



  • Hey,

    Running a dedicated "killing floor 2" server you need certain ports open on the PC so I thought easy! Done my CCTV etc, that all worked, anyway added the ports and the destinations but noticed that there still blocked under "Default deny rule IPv4 (1000000103)"

    15-10-2020 18-15-34.jpg

    15-10-2020 18-18-56.jpg

    Can you help?

    Thanks



  • @Datastream101
    The destination and NAT address in your NAT rule are equal? That makes no sense at all.



  • urm, yeah, I guess you can kind of tell, Massive n00b, that's how I got my CCTV camera going so I thought I'd done it correctly, obviously not.

    When I've been creating the rules I was greeted with "is not a valid redirect target port. It must be a port alias or integer between 1 and 65535." so it mentioned "This is usually identical to the "From port" above." that's why I then used the same port.

    Any advice I'd be grateful.

    Thanks



  • @Datastream101
    When you're talking about CCTV cam, I presume you mean a web cam, which you can access via HTTP using a webbrowser, right?
    But you won't be able to tell the webbrowser or moreover the OS it is running on to use a specefic source port.
    So if that isn't a special software which is accessing the cam, but a normal browser you will have to set the source port to "any" to get these rule applied.

    @Datastream101 said in Ports open But / Default deny rule IPv4 (1000000103) blocking:

    When I've been creating the rules I was greeted with "is not a valid redirect target port. It must be a port alias or integer between 1 and 65535." so it mentioned "This is usually identical to the "From port" above.

    The "From port" is not the source port. pfSense let you specify a port range for the target by entering a from and to port. But if it is only a single port only enter it once at "From port" or enter the equal at both.

    Don't know what the IP 192.168.0.3 is in your network, but entering the equal at source and destination is useless.


Log in to reply