Basic firewall forward port 80 to 192.168.1.*



  • I am trying to forward port 80 to a single IP address on my lan 192.168.1.*.  and I am missing something
    my WAN rules say

    Proto  Source  Port  Destination  Port  Gateway  Schedule

    *  RFC 1918 networks  *  *  *  *  *                                  Blocked

    *  *  *  LAN address  *  *

    Then on my LAN interface I have

    Proto  Source  Port  Destination  Port  Gateway  Schedule

    TCP  *  *  *  80 (HTTP)  *

    *  LAN net  *  *  *  *

    so the goal here is to allow only port 80 to one host on the lan

    and the other main use is to disallow any LAN2WiFi interface access to the lan.  But I don't think that these rules display this rule.

    I know this is real basic, so sorry but firewall rules kill me.



  • You need to create a NAT rule. Only a firewall rule is not enough.
    Also rules are applied to traffic only on the interface the traffic comes in.
    So making a rule on the LAN interface to deny access to the LAN will never do anything.
    You need to create the block rule on your LAN2WiFi interface.



  • Thanks that did it.  I am too used to Linksys etc.  Not seeing a port forward tab kind of threw me.  I have to learn that port forward is under the NAT tab and remember that.  I have found it there before but forgot about that location.


Log in to reply