![]() in EdgeOS terms, place a ruleset on the WAN interface with a direction of "IN" and a rule to accept New and Established-state traffic destined for the port. Allow traffic incoming on that port from the Internet in your Firewall.EdgeOS has a reasonably good interface for creating forwarding rules. create a forwarding rule for each port, accepting traffic from the WAN, and forwarding to your internal host on 9001 ad 9002.So to make your service accept incoming connections from the internet, you need to have the three elements a Process, a Port, and a Pathway. what you describe is a DNAT scenario (as opposed to an SNAT scenario, where you are connecting outbound from the LAN SNAT is uncommon in home networking, beyond the automatic mechanisms of stateful NAT). Secondly, what people call port-forwarding, is technically called DNAT. otherwise it doesn't matter if the port is made inaccessible by NAT or by the internal host itself its closed either way, just from different perspectives. The thing that makes it "open" is that there is a service listening there. The router can block what would otherwise be an open port (that's kind of its job in most home use-cases), but it cannot do anything more than allow traffic on the path.Īlso note, forwarding a port to a IP that doesn't have a processes on that port does not cause a port to become open either. First off, A port is open because a process is listening on it, and there is a network pathway between the client and the service.Īs such, unless you are talking about a service being hosted on the router itself, it cannot "open a port".
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |