Hello,

New to the forums and new to Draytek. So far very impressed with the overall setup, however I'm failing to create a rule which will work in the following way. All users on the network use RDP to access remote machines, however those machines will only accept a connection from one of our specific IP addresses.


I tried adding the following to the Routing > Policy Route table:

Profile: Outbound_RDP
Enabled
Priority: Normal
Protocol: TCP

TIME
Time Objects: None selected.

Service Protocol
Use Service Objects: Disabled

Source
Source Type: ANY
Source Port: 3389 - 3389

Destination
Destination Type: Any
Destination Port: 3389 - 3389

Route Rule

Out-going Rule: Load Balance Pool
Load Balance Rule: wan1
Mode: NAT
Use IP Alias:
Failover to Net Rule: Disabled.

Vigor 2960
My firmware version is 1.4.0


I also tried adding an IP Object for our entire internal range but this still doesn't seem to take affect can anyone point me to where i'm going wrong?

Leave the Source Port set to Any or 1-65535, due to how NAT works, this is typically random - just use the Destination port.

Otherwise I think what you've configured in that rule should work.

Happy days that worked, thanks "Admin3".