How can I set ipfw?

[3038922]

I have public IP
My home router:asus ax88u port forwards the jails(Reverse proxy server) of freenas.
All my virtual machines use a network configuration that fully emulates a stand-alone network card,like this:

But I often get warnings from freenas that someone is trying to access my NAS host in various ways.
I don't have any ports for forwarding freenas hosts,Only forward the jails(Reverse proxy server)
Should I set `ipfw` in the freenas host or in this jails(Reverse proxy server)?

 

[sretalla]

But I often get warnings from freenas that someone is trying to access my NAS host in various ways.

Can you share the warnings? I agree it makes no sense based on what you say you have configured.

 

[sretalla]

My home router:asus ax88u port forwards the jails(Reverse proxy server)

Also, if this is what you have done, this is not a reverse proxy, it's port forwarding... you would need to use a product like nginX, Apache, HAProxy or Caddy... or others to reverse proxy, where you then forward the ports on your router to the reverse proxy, not the jail.

 

[3038922]

Also, if this is what you have done, this is not a reverse proxy, it's port forwarding... you would need to use a product like nginX, Apache, HAProxy or Caddy... or others to reverse proxy, where you then forward the ports on your router to the reverse proxy, not the jail.

I installed the reverse proxy server in a jails. Then the router forwarded the port 443 of this jails and the corresponding TCP port.

```
New alerts:
* 245 SSH login failures:
Jun 20 00:04:01 ncrNas sshd[51084]: Invalid user test from 49.234.41.108 port 46302
Jun 20 00:04:01 ncrNas sshd[51084]: Disconnected from invalid user test 49.234.41.108 port 46302 [preauth]
... 241 more ...
Jun 20 23:58:27 ncrNas sshd[79859]: Invalid user lzp from 180.153.57.251 port 15175
Jun 20 23:58:27 ncrNas sshd[79859]: Disconnected from invalid user lzp 180.153.57.251 port 15175 [preauth]


Current alerts:
* 245 SSH login failures:
Jun 20 00:04:01 ncrNas sshd[51084]: Invalid user test from 49.234.41.108 port 46302
Jun 20 00:04:01 ncrNas sshd[51084]: Disconnected from invalid user test 49.234.41.108 port 46302 [preauth]
... 241 more ...
Jun 20 23:58:27 ncrNas sshd[79859]: Invalid user lzp from 180.153.57.251 port 15175
Jun 20 23:58:27 ncrNas sshd[79859]: Disconnected from invalid user lzp 180.153.57.251 port 15175 [preauth]
```

 

[Samuel Tai]

You're seeing the usual port scanning behavior for anything exposed to the Internet. Are you sure you've only forwarded port 443, and not also port 22?

 

[3038922]

You're seeing the usual port scanning behavior for anything exposed to the Internet. Are you sure you've only forwarded port 443, and not also port 22?

I have `emby` `nextcloud` `aria2` service in freenas.
The port of `aria2` is directly forwarded through router without reverse proxy.
The router itself has the `OpenVPN` and `v2ray` service installed. I'm not sure which port caused this