SSH port forward in upcoming white

Similar Questions

• Port forwarding blocking access SSH, POP3, and IMPA

  I recently acquired a Linksys EA8500 and very strange, annoying, and annoying problem has developed. I have a mail server and files in my home network I can access it from outside my house using a dynamic IP service. The server is running DNS as well, so it can be but from inside and outside the local network form using the same URL. Of course, external access, to set up the port forwarding on the router. This Setup has worked well with my previous, lower end, (a D-Link) router and, for a while, with the EA8500. However, there are some time (and I'm not aware of anything that has changed the situation) it doesn't work anymore: If port forwarding is enabled, requests for access over WiFi within the local network and outside the LAN are received by the server, as if they came from the top , instead of the actual computer and are thus rejected (authetication is through security keys). Always access requests work correctly on the cable connections and return to normal over WiFi if port forwarding is removed. Of course, this cancels the whole point of port forwarding. This never happened with the router D-Link and, as I mentioned, didn't happen with the EA8500 first. I have enabled and then disabled access as a guest and no DMZ have put in place, but which did not help. I have both the 2.5 MHz and 5 MHz networks active, although I'm only using version 2.5, but they have different sid, and I'm on the network with and without port forwarding 2.5 on.

  Any suggestions will be greatly appreciated

  Okay, I found where the problem was, and I apologize for having raised this issue just because I made a very stupid mistake. It turns out that I had added DNS servers external (outside my local file/mail/DNS server) to the list on my router (and I forgot about it). Cancel the additional DNS resolvers seems to have solved the problem. I'm far from understanding how the DNS works really, as you can see.

• Port forwarding on several computers

  Hi I just bought a Wireless Linksys WAG325N router. I usually about 2-3 machines on my network WIFI and I'd like to enable the port forwarding for each of them on a particular port. It is easy to do for a single exact machine - simply type the port number and IP of the computer to the configuration - but the problem is - I would do it for each other: example: enable the port forwarding XXXX for 192.168.1.100, 101 and 102. Help, please? Thank you in advance.

  It is the application load in a sense. You can change the assignment of external ports to resolve the correct internal port on each machine.

  Say for example using rdp that uses (port/protocol) tcp/3389 (RDP client) application actually allows you to change the external port to connect to, if you specify after the investigation period. If for example say we have rdp access to all 3 computers in the outside world. We can configure the port forwarding on every computer

  (Computers)      (internal IP addressort)            (External IP/port)

  COMP A 192.168.0.5:3389 203.x.y.z:3389

  Model B 192.168.0.10:3389 203.x.y.z:3390

  Model C 192.168.0.15:3389 203.x.y.z:3391

  It is the purpose of a router to create routing tables.

  Of course, you will need to remember which ports are assigned to which device.

  It is certainly dependent on the application. Find out if your application or service supports changing the port, ftp, rdp clients, tftp, ssh all do... Most of the 'Good' services are, as those who built it were considered in a NAT environment.

  NAT network address translation =

  Most of the things if not at the level of the applications, services even in windows are tweakable via the registry. I wouldn't say that that if you don't have experience relavent. You potentially make your workstation unusable if you're wrong.

  I hope this helps.

• port forwarding for file sharing on the internet.

  I am trying to determine what port numbers, I need to transfer to my router (in virtual server) to be able to share my NAS files over the internet with my friends? I want to use file sharing, have implemented a DDNS on the NAS with a client account to my dynamic IP address, but cannot get the numbers correct port developed to be able to configure port forwarding. Can anyone help?

  Hello

  Open sharing Ports that are used on a local area network on the Internet is a Big safety hazard.

  There are secure applications that are built for this purpose, they use their own ports and generally are safe (as on the VPN or SSH).

  A free quick simple way is shared through secure ftp server. http://FileZilla-project.org/

  An elegant way door application like this, http://download.cnet.com/WebDrive/3000-2160_4-10017919.html

  In general, http://www.practicallynetworked.com/howto/fileshare/fileshare_intro.htm

  Jack-MVP Windows Networking. WWW.EZLAN.NET

• port forwarding static pix501

  Hello!

  I really made efforts to make this work, but without success.

  What I'm trying to do is a port forwarding on tcp 4899. I searched forums, read articles and the manual, but it doesn't really work.

  Topology: Pix ISP modem DSL - lan

  Here is the config of my pov, working the 'best '.

  : Saved

  :

  6.3 (1) version PIX

  interface ethernet0 car

  interface ethernet1 100full

  ethernet0 nameif outside security0

  nameif ethernet1 inside the security100

  enable password xxxx

  passwd xxx

  pixfirewall hostname

  domain ciscopix.com

  fixup protocol ftp 21

  fixup protocol h323 h225 1720

  fixup protocol h323 ras 1718-1719

  fixup protocol http 80

  fixup protocol they 389

  fixup protocol rsh 514

  fixup protocol rtsp 554

  fixup protocol sip 5060

  fixup protocol sip udp 5060

  fixup protocol 2000 skinny

  fixup protocol smtp 25

  fixup protocol sqlnet 1521

  names of

  access-list 101 permit tcp any host xx.xx.xx.245 eq 4899

  pager lines 24

  information recording console

  Outside 1500 MTU

  Within 1500 MTU

  IP address outside xx.xx.xx.244 255.255.255.240

  IP address inside 192.168.29.91 255.255.255.0

  alarm action IP verification of information

  alarm action attack IP audit

  PDM logging 100 information

  history of PDM activate

  ARP timeout 14400

  Global 1 xx.xx.xx.245 (outside)

  NAT (inside) 1 0.0.0.0 0.0.0.0 0 0

  static (inside, outside) tcp xx.xx.xx.245 4899 192.168.29.4 4899 netmask 255.255.255.255 0 0

  Access-group 101 in external interface

  Route outside 0.0.0.0 0.0.0.0 xx.xx.xx.241 1

  Timeout xlate 0:05:00

  Timeout conn 01:00 half-closed 0:10:00 udp 0: CPP 02:00 0:10:00 01:00 h225

  H323 timeout 0:05:00 mgcp 0: sip from 05:00 0:30:00 sip_media 0:02:00

  Timeout, uauth 0:05:00 absolute

  GANYMEDE + Protocol Ganymede + AAA-server

  RADIUS Protocol RADIUS AAA server

  AAA-server local LOCAL Protocol

  Enable http server

  http 192.168.29.0 255.255.255.0 inside

  No snmp server location

  No snmp Server contact

  SNMP-Server Community public

  No trap to activate snmp Server

  enable floodguard

  Telnet timeout 5

  SSH timeout 5

  Console timeout 0

  dhcpd address 192.168.29.92 - 192.168.29.123 inside

  dhcpd lease 3600

  dhcpd ping_timeout 750

  dhcpd outside auto_config

  Terminal width 80

  Cryptochecksum:xxxx

  : end

  Here's a log of what happens when I try to establish a connection.

  609001: built internal local host: 192.168.29.4

  305011: built a static TCP translation of inside:192.168.29.4/4899 to outside:xx.xx.xx.245/4899

  302013: built of TCP connections incoming 582 for outside:yy.yy.yy.51/3289 (yy.yy.yy.51/3289) at inside:192.168.29.4/4899 (xx.xx.xx.245/4899)

  302014: disassembly of the TCP connection 582 for outside:yy.yy.yy.51/3289 to inside:192.168.29.4/4899 duration 0:02:01 bytes 0 SYN Timeout

  305012: static translation TCP disassembly of inside:192.168.29.4/4899 to outside:xx.xx.xx.245/4899 duration 0:02:15

  And IMO it looks as it should? But there is no data flow.

  Thank you! Peter

  Are you sure that the service is running on 192.168.29.4? "bytes 0 SYN Timeout"reveals as no response was sent from inside.

  After you add the static statement, did you make a clear xlate or restart the pix to reset the table of translation slot? (clear xlate is preferred, but naturally a reboot will be wipe off the table)

• Cisco 881 Port forwarding

  Hello

  I'm trying for our DB setup port forwarding server.

  Transfer out to 172.16.10.100 for port 1433 is necessary.

  We use Cisco 881 TPG EFM and currently running config like below.

  Our public IP is x.x.x.x and DB 172.16.10.100 server.

  Internet works fine but port 1433 is no transfer to the server from the outside and I am not able to RDP to the server also gives access to.

  Please correct the settings for me.

  ROUTER1 hostname
  !
  boot-start-marker
  boot-end-marker
  !
  !
  enable secret 5 $1$ IRTA$ bgFgMkdStoAKC2Xh3cwD01
  activate the ROUTER1 password
  !
  No aaa new-model
  iomem 10 memory size
  !
   
  !
  DHCP excluded-address IP 172.16.10.1
  DHCP excluded-address IP 10.10.10.1
  DHCP excluded-address IP 172.16.10.100
  DHCP excluded-address IP 172.16.10.101
  !
  IP NET-POOL dhcp pool
  import all
  network 172.16.10.0 255.255.255.0
  router by default - 172.16.10.1
  203.12.160.36 DNS server
  lease 9
  !
  !
  !
  no ip domain search
  IP domain name router1.local
  name of the IP-server 203.12.160.35
  name of the IP-server 203.12.160.36
  IP cef
  No ipv6 cef
  !
  !
  license udi pid CISCO881-K9 sn FGL1821243Q
  !
  !
  username admin privilege 15 secret 5 2wf23sdas
  !
   
  !
  property intellectual ssh time 60
  property intellectual ssh sshkeys name of the rsa key pair
  property intellectual ssh version 2
  property intellectual ssh pubkey-string
  username admin
   
  !
  interface FastEthernet0
  no ip address
  !
  interface FastEthernet1
  no ip address
  !
  interface FastEthernet2
  no ip address
  !
  interface FastEthernet3
  no ip address
  !
  interface FastEthernet4
  no ip address
  penetration of the IP stream
  automatic duplex
  automatic speed
  PPPoE enable global group
  PPPoE-client dial-pool-number 1
  !
  interface Vlan1
  Description $ETH_LAN$
  address 172.16.10.1 IP 255.255.255.0
  IP nat inside
  IP virtual-reassembly in
  IP tcp adjust-mss 1452
  !
  interface Dialer0
  no ip address
  No cdp enable
  !
  interface Dialer1
  MTU 1492
  IP ddns update DDNS
  the negotiated IP address
  NAT outside IP
  IP virtual-reassembly in
  encapsulation ppp
  IP tcp adjust-mss 1436
  Dialer pool 1
  PPP chap hostname [email protected] / * /
  PPP chap password 0 xxxxxx
  PPP pap sent-username [email protected] / * / password 0 xxxxxx
  No cdp enable
  !
  IP forward-Protocol ND
  IP http server
  23 class IP http access
  local IP http authentication
  IP http secure server
  IP http timeout policy slowed down 60 life 86400 request 10000
  !
  overload of IP nat inside source list ACL_NAT_ALLOW interface Dialer1
  IP nat inside source static tcp 172.16.10.100 3389 3389 Dialer1 interface
  IP nat inside source static tcp 172.16.10.100 Dialer1 1433 1433 interface
  IP route 0.0.0.0 0.0.0.0 Dialer1
  !
  ACL_NAT_ALLOW extended IP access list
  allow an ip
  permit tcp any any eq 1433
  permit tcp any any eq 3389
  allow a full tcp
  IP 172.16.10.0 allow 0.0.0.255 any
  permit tcp any any eq www
  allow any host 172.16.10.100 eq 1433 tcp
  allow accord any host 172.16.10.100
  ACL_OUTSIDE-to-INSIDE extended IP access list
  permit tcp any any eq 22
  permit any any eq 443 tcp
  permit any any icmp echo
  permit any any icmp echo response
  ICMP all all ttl-exceeded allow it
  allow all all unreachable icmp
  allow udp any any eq isakmp
  permit any any eq non500-isakmp udp
  allow an esp
  permit tcp any any eq telnet
  permit tcp any any eq 3389
  allow a full tcp
  allow a udp
  permit tcp any any eq 1433
  !
  access-list 1 permit 0.0.0.0 255.255.255.0
  access-list 1 permit 172.16.10.0 0.0.0.255
  access-list 1 permit one
  access-list 23 allow 10.10.10.0 0.0.0.7
  access-list 55 allow 203.12.160.5
  access-list 55 allow 172.29.0.3
  access-list 55 allow 172.29.0.4
  access-list 55 allow 172.29.0.10
  not run cdp
  !
  tpgframe SNMP - Server RO 55 community
  Enable SNMP-Server intercepts ATS
   
   
   
   
   

  I don't see anything wrong with NAT redirection in this configuration. What happens when you try what follows from the CLI of the router?

   telnet 172.16.10.100 1433 /source-interface Dialer1 telnet 172.16.10.100 3389 /source-interface Dialer1 telnet 172.16.10.100 1433 telnet 172.16.10.100 3389

• port forwarding TCP on pix 501

  can you tell me how to port forward or open tcp 21 and 1024-2774 for the end user of a backup system remotely via the pix Manager or regular here is a copy of my config thanks my apologies if this is a little wave building configuration...

  : Saved

  :

  6.2 (2) version PIX

  ethernet0 nameif outside security0

  nameif ethernet1 inside the security100

  activate the password

  pixfirewall hostname

  domain ciscopix.com

  fixup protocol ftp 21

  fixup protocol http 80

  fixup protocol h323 h225 1720

  fixup protocol h323 ras 1718-1719

  fixup protocol they 389

  fixup protocol rsh 514

  fixup protocol rtsp 554

  fixup protocol smtp 25

  fixup protocol sqlnet 1521

  fixup protocol sip 5060

  fixup protocol 2000 skinny

  names of

  list of access allow-permit tcp any any eq www

  access list permits allow tcp everything any https eq

  list of access allow-permit udp any any eq isakmp

  list of access allow-permit udp any any eq field

  list of access allow-permit tcp any any eq telnet

  list of access allow-permit tcp any any eq ftp

  access list permit to allow icmp a whole

  access list allow allow an entire esp

  list of access allow-permit tcp any any eq ssh

  list of access allow-permit tcp any any eq - ica citrix

  list of access allow-permit tcp any any eq pop3

  list of access allow-permit tcp any any eq smtp

  list of access allow-permit tcp any any eq aol

  access list, allow-in allow an entire esp

  access list allow component snap permit udp any any eq isakmp

  access list, allow-in allow icmp a whole

  access list allow component snap permit tcp any any eq ssh

  pager lines 24

  interface ethernet0 10baset

  interface ethernet1 10full

  Outside 1500 MTU

  Within 1500 MTU

  IP address outside x.x.x.226 255.255.255.240

  IP address inside 192.168.1.1 255.255.255.0

  alarm action IP verification of information

  alarm action attack IP audit

  location of PDM 192.168.1.3 255.255.255.255 inside

  location of PDM 192.168.1.5 255.255.255.255 inside

  location of PDM 192.168.1.6 255.255.255.255 inside

  location of PDM 192.168.1.7 255.255.255.255 inside

  location of PDM 192.168.1.8 255.255.255.255 inside

  location of PDM 192.168.1.9 255.255.255.255 inside

  PDM location x.x.x.88 255.255.255.255 outside

  location of PDM 192.168.1.10 255.255.255.255 inside

  location of PDM 192.168.1.11 255.255.255.255 inside

  PDM logging 100 information

  history of PDM activate

  ARP timeout 14400

  Global 1 interface (outside)

  NAT (inside) 1 0.0.0.0 0.0.0.0 0 0

  public static x.x.x.227 (Interior, exterior) 192.168.1.9 netmask

  255.255.255.255 0 0

  public static x.x.x.228 (Interior, exterior) 192.168.1.8 netmask

  255.255.255.255 0 0

  public static x.x.x.229 (Interior, exterior) 192.168.1.3 netmask

  255.255.255.255 0 0

  public static x.x.x.230 (Interior, exterior) 192.168.1.5 mask

  255.255.255.255 0 0

  public static x.x.x.231 (Interior, exterior) 192.168.1.7 netmask

  255.255.255.255 0 0

  public static x.x.x.232 (Interior, exterior) 192.168.1.6 netmask

  255.255.255.255 0 0

  Access - allows to group in the interface outside

  allow-out access-group in the interface inside

  Route outside 0.0.0.0 0.0.0.0 216.215.244.225 1

  Timeout xlate 0:05:00

  Timeout conn 0 half-closed 01:00:10: 00 udp 0: CPP 02:00 0:10:00 h323

  0:05:00 sip 0:30:00 sip_media 0:02:00

  Timeout, uauth 0:05:00 absolute

  GANYMEDE + Protocol Ganymede + AAA-server

  RADIUS Protocol RADIUS AAA server

  AAA-server local LOCAL Protocol

  Enable http server

  http 192.168.1.0 255.255.255.0 inside

  No snmp server location

  No snmp Server contact

  SNMP-Server Community public

  No trap to activate snmp Server

  enable floodguard

  Permitted connection ipsec sysopt

  No sysopt route dnat

  Telnet 192.168.1.0 255.255.255.0 inside

  Telnet timeout 5

  SSH timeout 5

  dhcpd address 192.168.1.2 - 192.168.1.33 inside

  dhcpd dns 64.89.70.2 64.89.74.2

  dhcpd lease 2000000

  dhcpd ping_timeout 750

  dhcpd outside auto_config

  dhcpd allow inside

  Terminal width 80

  Cryptochecksum:XXXXX

  : end

  [OK]

  Hello

  Port forwarding is different to allow ports through the firewall. I guess you meant allow tcp/21 and 21 1024-2774, right port?

  You need the following lines

  access list allow component snap permit tcp any any eq ftp

  access list allow component snap allowed tcp everything any 1024 2774 Beach

  You can be more specific and can replace "any" with the actual IP addresses

  Thank you

  Nadeem

• How to configure port forwarding on a dedicated server running CentOS 5.4 to use Ubuntu 9.0.4

  The basic situation that I have is a dedicated server running CentOS 5.4 for the moment I have a virtual machine running Ubuntu 9.0.4. Later, I want to add a virtual computer that is running Windows Server 2003, but right now I focus on the implementation and running Ubuntu.

  The installation of Ubuntu works very well, but I am seriously struggling to get the port forwarding so I can visit the Web sites to be hosted on the Ubuntu VM. As a newbie on Linux, I am confused about the relationship between IPTables and VMWare own port forwarding.

  Here's what I've tried so far.

  My server's IP address is xxx.xxx.xxx.xxx, provider support told me that the subnet mask is 255.255.255.0, gateway address is xxx.xxx.xxx.1 and the network address is xxx.xxx.xxx.0. (These last two surprises me a little, I'd expect to be private rather than public gateway/network address).

  First of all, I tried Bridged Networking, but had no luck contacting the machine other than through the VMware console. I tried it the ping from the host (using ssh in the host), but no joy. also no Inernet access from the VM. I changed the configuration of the DHCP server to static interfaces, using a static address 192.168.1.100 and by assigning to the doors of such xxx.xxx.xxx.1 as advised by the supplier. No real difference, still cannot ping the host prompt, or vice versa and any of the customer's Internet access.

  Then I tried NAT. The host automatically 192.168.132.128 with a 192.168.132.2 gateway IP address now, the client has access to the Internet and when I do a VNC host and open Firefox with 192.168.132.128 I can see the correct hosted Web site but I still can't get in from the outside.

  I mentioned that I am a bit confused about IPtables and VMware port forwarding, what I wanted to say, it is that I'm not sure if IPtable transfer must be set to the IP address of the interface of comments (192.168.132.128 in this case) or the address of the 192.168.132.2 bridge.

  I have the impression that I'm missing something simple here, can someone tell me what it is?

  Find your "/ etc/vmware/vmnet8/nat/nat.conf" file and change:

  Example:

  \[incomingtcp]

  8887 = 192.168.27.128:80

  That would redirect a header of TCP packet entering the port 8887 on the host on port 80 of the guest with the IP 192.168.27.128.

  Ditto for the UPD:

  \[incomingudp]

  6000 = 192.168.27.128:6001

  You can (must) use iptables for firewall purposes but does not redirect traffic at the prompt.

  Read page 252 in the Manual: http://www.vmware.com/pdf/vmserver2.pdf

  AWo

  VCP 3 & 4

  Author @ vmwire.net

  \[:o]===\[o:]

  = You want to have this ad as a ringtone on your mobile phone? =

  = Send 'Assignment' to 911 for only $999999,99! =

• How can I enable port forwarding in the router of the time capsule

  Does anyone know how to enable port forwarding in router Time Capsule Airport please?

  Port Mapping on the time Capsule airport cannot be enabled unless you have the right type of modem on your network.

  Thus, we need the number of brand and model of the device you're calling your "modem" before we can move forward. Please post back this information.  We do not need a series number... only the name of the manufacturer and model number of the modem.

• Why isn't my port forwarding of the opening port

  I have the latest version of the 3 terabyte time capsule. I'm trying to forward a port so I can access my security cameras and it does not open.  My camera 100 port needs to be open and it will report as not open on any port test sites. Any ideas as to why, I use a static ip address of the server for the security system.

  Testing websites are useless... test by plugging actually to the camera from a device attached to a captive phone or a friend...

  Port forwarding works only if you have the public IP address on the Wan of the TC... and it's the only router in the network... is this the case?

• your external IP address for port forwarding

  OK, so I want to do a game server, but... There need Port Forwarding, so I called my InternetServiceProvider "Clear."

  Claire told me that "WE DO NOT support the external Ip addresses: then I was then told that I have to call HP because that's what my PC is under.

  I decided to go to the site and ask because they want a $ 60 million tax which is good, but... I don't have the money! This is why I need a server. In any case if you can please give me a video or tell me how do it in the response that would be LARGELY APPRECIATED!

  -Sincerely

  VladmirTodd

  Go to portforward.com and use their tutorials.

• Airport of Port Forwarding is more?

  So I'm pretty new to this network thing. I don't know the technical network terms then please do not use (or at least their simplification). So I managed to set up my ASUS RT - something something router. I also put in some rules to sink my Xbox One anywhere port forwarding. However, I had problems with port forwarding, so I just used the dmz for her service. However, given that I had to move my Xbox to another part of my house with worst network connection, set up a time capsule for the network. After a long time, I managed to do the work, but now I can listen to is no longer my Xbox. My guess is that the port forwarding rules are not carriers, as it connected via ethernet time capsule and the capsule is connected to another time capsule via radio and this time capsule is connected to my ASUS router via ethernet. So my question is: how to transfer the required ports to my Xbox?

  If both of your time Capsules are configured as bridges, the Asus router is the one that needs to be set up on port mapping. The port mapping is used only when a router is configured for routing. In other words, the NAT and DHCP services are enabled. This is the default value for any router.

  Just to make sure that I understand your current network configuration, the following is correct?

  • ASUS > Time Capsule > > > Time Capsule > Xbox, where ' > ' represents a wired connection, and ' > > > ' represents a wireless.

• How do I port forward on apple airport? (READ ALL)

  I have an airport express from apple connected to an asus router via wifi and I need to know how I can portforward by airport to the router because my pc is connected by ethernet to the airport. Help, please.

  The express should be none not routing at all and therefore no port forwarding.

  The only way this can work is the express installation to the wireless bridge... Apple called client mode... There is no routing.

  BUT it can also have port problems... It is really unsuitable if you operate in questions.

  In any case all the transfer is possible on the Asus.

• Port forwarding rules missing WNR1000V3

  I read a few posts here that may be similar, but they are so old, that threads are blocked. I'm trying to help out a local company add some rules to redirect to their server port WNR1000V3 more.

  They must have some configuration of port forwarding already because they are able to access an existing via RDP server so there is a rule somewhere for port 3389. However, it is has nothing listed in respect of port forwarding.

  My view on it after scratching my head for several hours, it's that there is either a port forwarding rules defined and running, but they are not displayed in the user interface, OR there is some screen that I have not found (was all!) where port forwarding is also configured.

  I think it's the first because there is no rule for the listed FTP, but if I try to add a new FTP rule, it displays a "conflict of Port with other services".

  Firmware is V1.0.2.62_60.0.87 although the router points out that there is an update.

  There is a known issue like this with this model? It seems a few years old.

  Thank you, Rob.

  Sorry, I would have given an update on that. I am aware of what means the error and it was probably that a rule on this port unless it was not displayed. I hoped that export Netgear configuration could be a human readable script (found on the Cisco routers), but it's not.

  After discussion about ServerFault and checking some of the suggestions there, it became clear that something was broken enough with the router. An update does not solve so I have taken note of all the settings and did a reset.

  That solved the problem. My theory is that some bugs in an earlier version of the firmware caused a bad record in order to be there for port forwarding. One that actually worked, but could not be displayed.

  Cheers, Rob.

• NETGEAR ProSafe VPN Firewall SRXN3205 and port forwarding?

  Hi, this is a long shot, but I'm pulling my hair out at this point and can be a bit over my head, as I am new on network

  Small short story, I have two servers, one is the NAS box (IE if I connect via the internet to the site via public IP network from home, I get it that site says 'my actions' I insert login and pass and get access to them.)
  That is, everything is peachy.
  The problem is when I try to connect to my FileMaker Server I'm not and instead, he takes me to the login NAS box. So I think ok, I need to port forward (5003 for filemaker) to go to different PC local LAN(192. etc)

  Security > firewall > Add Service entering:
  Service: fmserver
  Action: Always leave
  Send to LAN Server: unique address 192. etc is filemaker installed on (and different on a NAS)
  Definition of Port number: 5003<-- is="" this="" right?="" how="" else="" would="" you="" indicate="" you="" want="" all="" connections="" on="" this="" port="" to="" go="" to="" this="" specific="" lan="" machine="" from="" internet="" instead="" of="" default="" which="" seems="" to="" be="">
  rest is default, I click on apply.

  Here's what I don't understand. In the table of incoming Services, (security > firewall) I have two local IP in the list, a SIN, the other for Filemaker. But only the top works and can be connected to. I can move every top position and it will work, but they will not work at the same time, just the one that sits on the top of the sad Smiley page

  and yes I read the manual again and again and don't know how I'm screwing up the port forwarding on this point, even if I am brand new to probably something stupid Smiley Happy (our work IT guy is gone so tried to get involved through this somehow)

  Any help would be appreciated.

  Hello sinieq,

  There is a hierarchy on incoming service table, which is normal. I see 4 services added using "ANY" (ALL use any port number) you will need to remove/disable these because of the rule of the hierarchy on the table, all other services will be ignored when EVERYTHING is used. What is the port number used by the NAS Server? I don't see a port defined to access NAS. Try disabling services by using "ANY" and try again by adding the translation to the port number of the NAS.

  Let us know what happens.

  Thank you