Allow incoming traffic for certain IP and port

Hi, noob here so take it easy on me! Just in process of slowly moving from Draytrek to Watchguard. On the Draytek I block all incoming traffic and specifically allow traffic from one remote IP with ports specified. Additonally, I have some ports forwarded.

I have created a SNAT rule to forward the ports to relevant local PC which looks ok.

I guess I need a firewall policy to allow the external IP (with source and dest ports)? How would I best do this. I'm using web config locally managed T series firebox.

I looked that the live log and I saw

Deny X.X.X.X(Remote IP) Y.Y.Y.Y (Local Public IP ) LOCAL TCP PORT/TCP REMOTE PORT(I think !) LOCAL PORT

Appreciate the help !


Sign In to comment.