Hi,
I'm kind of a newbie to wingate and having some problems with my firewall setup. My wingate (version 5.2 Build 885) machine sits on our student VLAN. On my admin VLan (different subnet) I have a cacti box which I want to monitor the wingate server.
If I enable UDP port 161 for Internet connections coming into the server, then I get my cacti graphs no problem. But I really don't want to open up this port to internet machines.
Is there any way I can tell wingate to allow port 161 for any IP addresses coming off a certain range? I can't seem to find any way to do this?
Any help would be appreciated.
Ta!
Firewall Question
Moderator: Qbik Staff
2 posts
• Page 1 of 1
Re: Firewall Question
by Pascal » Feb 09 04 8:42 am
nixter wrote:If I enable UDP port 161 for Internet connections coming into the server, then I get my cacti graphs no problem. But I really don't want to open up this port to internet machines.
Is there any way I can tell wingate to allow port 161 for any IP addresses coming off a certain range? I can't seem to find any way to do this?
Any help would be appreciated.
Ta!
Is it possible to change the port number of the service at all ? Because, what you could do is to create a TCP mapping service that listens on port 162 (For example) and maps to 127.0.0.1:161. If you bind this to your external adapter you should be able to access it from the internet. Then, by editing the Policies for "Everyone" (Or your authenticated user) you can specify specific locations from where the recipient has rights from. That way, everyone can try to access it, but only people connecting from a specific IP / range of IPs will have access.
This does mean that the port will be visible from the Internet, but at least you'll be denying connections to it.
- Pascal
- Qbik Staff
- Posts: 2623
- Joined: Sep 08 03 8:19 pm
- Location: Auckland, New Zealand
2 posts
• Page 1 of 1
Who is online
Users browsing this forum: Google [Bot] and 7 guests