eth0 - external NIC (216.115.X.X)
eth1 - internal NIC (192.168.1.1)
Forwarded port 12345 to computer 192.168.1.5
Interface Orig. dest. Orig. dest. port Protocol Source Dest. IP Port
eth0 eBox 12345 TCP/UDP Any 192.168.1.5 Same
Created a rule allowing all traffic from internal interfaces to ebox
Decision Source Destination Service
ACCEPT Any Any any
Forwarding works, but Firewall drops forwarded ports when request comes from internal interface:
In. int. Out. int. Source Dest. Protocol Source port Dest. port Decision
eth1 192.168.1.5 216.115.X.X TCP 53216 12345 DROP