Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations derfloh on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Pass client application through Raptor 6.5.2

Status
Not open for further replies.
onemoron

onemoron

MIS
Mar 1, 2003
1
US
Trying to pass client application through Raptor 6.5.2
Inside application server answers requests on port 4222.
Client sends request to RaptorIP on port 4222, client required to log onto application server.
Procedure taken:
Created host Network Entity for application server (Internal IP).
Created host Network Entity for client static IP (External IP).
Created new TCP protocol on Raptor using port 4222 as destination and source port as 1024-65535.
Created rules on Raptor:
#1 Allow In:
Connection in via external nic from client entity.
Destined for appserver entity out via internal nic.
Services - TCP protocol created above.
#2 Allow Out:
Connection in via internal nic from appserver entity.
Destined for client entity out via external nic.
Services - TCP protocol created above.
Errors:
I recieve the error "Server closed connection".
I can't tell if raptor closed the connection or the application closed the connection.
Raptor log file reads:
Mar 01 13:48:37.793 fireout tcp-gsp[137]: 344 4222/tcp: Non-transparent call from 200.40.30.20
Mar 01 13:48:37.793 fireout tcp-gsp[137]: 121 Statistics: duration=0.16 id=l8mj1 src=200.40.30.20/1052 proto=4222/tcp (Attempt to connect to firewall directly)
Can anyone see what the problem is?
Is the /1052 the port on the client which the request was made from?
Any help would be appcreciated.
 
Sort by date Sort by votes
I will tell you gsp(general service protocol) is have a fit. Do you have a gsp set for this application to pass through? Is your rule 137? I think in this case you will need to have a custom protocol, inwhich you can pass to the specific port you want the application to pass back to the client. By default firewall blocks any port lower than 1024 unless specified. For example, mail port 25 , SSL 443, http 80, must be specified for usage. This is why you see ports larger than 1024. The ports used 344/4222 it is going out on 344 and trying to come back in on 4222. The firewall randomly selects the inbound portfor security reasons. I hope this was helpful.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

ChrisFairley
  • Locked
  • Question
Downloads failing through ASA 5520
Replies
1
Views
149
iggsterman
iggsterman
Russtoleum
  • Locked
  • Question
Windows client can't connect to sonicwall l2tp server
Replies
0
Views
137
Russtoleum
Russtoleum
brownmab53
  • Locked
  • Question
PIX 525 ASA not allowing DHCP addresses to pass through to router
Replies
0
Views
153
brownmab53
brownmab53
Russtoleum
  • Locked
  • Question
SW GVC won't route traffic through sonicwall to offsite tunnel unless it leases an ip on the same su
Replies
1
Views
171
Russtoleum
Russtoleum
pbxnkey
  • Locked
  • Question
Cisco ASA VPN using Windows Client-Error 691
Replies
1
Views
163
pbxnkey
pbxnkey

Part and Inventory Search

Sponsor

Back
Top