Hi, I have multiple Aliases on my IPFire server. And I’m trying to spin up Port Forwarding for one client.
I allowed without issues: from Alias IP to my Client IP in Orange zone subnet.
But I’m strugling to allow from Client IP in orange zone subnet to Alias IP because right under the Incoming Firewall Access rule is this written with red background: Policy: Blocked.
Does anyone know how to change Incoming Firewall Access from Policy: Blocked to Policy: Allowed ?
Like the Outgoing Firewall Access is allowed.
[I use GUI IPFire web interface to access and manage my IPFire server.]
But i have also access to the root IPFire itself if needed.
You don’t want to change that.
A firewall rule is the way to go.
Much like your other post.
If you need access to multiple servers.
Than wan side aliases would work or a VPN.
That looks wrong.
I have little idea what you are trying to do here.
You should look at firewall groups.
You can make a group of administrators.
Then make a firewall rule for that group.
You can make a service group.
To allow them access to assorted ports.
If you are setting up 2 mail servers.
Than my understanding is you will need SNAT ruled. So the response is returned from the correct ip.
But I don’t have a mail server.
So I can’t help with that.
But this I have seen discussed in the forum in the past.
Hope that helps
Not neccessarily two mail servers. I´m setting up a general Internet connectivity for my client. Which has multiple applications running on it and some of them also needs port forwarding…
I used Source NAT rule from message above to force it to use a specific [second] alias on my IPFire server.
and it seems to work fine however I’m not sure if this is correct. and some other rule isn’t missing to force a specific client to use specific Alias IP on IPFire.