Fortigate Rules Plex Media Server

Posted By admin  On 17.08.21

Tl;dr: If publishing your Plex Server behind a Fortigate running FortiOS 6.0.2 and you want to use a second static IP address for your server, you have to create the VIP and NOT use port forwarding. After you create the VIP, then you can set your IPv4 Policy to allow TCP32400 to.

  1. The FortiGate firewall has a built-in iPerf3 client and a limited embedded iPerf3 server which can be used in order to measure bandwidth. To perform bandwidth test from the FortiGate firewall towards an iPerf3 server, use # diag traffictest command. There is multiple.
  2. A provider like Plex Media Server is capable of delivering a stream of media to the Plex Media Client. Instead of waiting for a file download completion to be able to play it, streaming plays a file as it is downloaded to the device’s cache.

PLEX Server Version#: 1.19.4.2902-69560ce1e-x86
PLEX Player Version#: N/A, Simply Use Web
PLEX Web#: 4.30.2
SERVER: WinSrvStd 2019 x64
DOMAIN: Yes, as only server.
FIREWALL (New): Fortigate (40F)
FIREWALL (Old): Zyxel (USG40)

Good Day/Evening All,
I’ve found a couple of old post regarding bugs that caused error message about “No Soup…” and an old Fortigate post. However, those don’t appear to apply to my problem of not being able to authorize/claim the server.

Since I’ve mentioned new firewall…
I have a very basic rule in place… no AV, DNS, IPS, Proxy, Web filtering on any kind enforced. Just a basic 0: Any/Any/ServiceAny/ScheduleAny Allow // followed by the last Deny/Deny.
I can ping plex.tv and can download from the site.

Fortigate Rules Plex Media Server

I’ve banged my head on this for a couple of days, so here’s were I’m at…

  1. Deleted all Authorized Devices (including Server)
  2. Exit Plex from the SysTray (verified process gone in OS)
  3. Start Plex from the Start Menu
  4. Open Plex from the SysTray
    NOTE: Firefox opens the site on the loopback:32400 and I also by StaticIP:32400)
  5. Within the Plex Web Page…
    5.1 Click on menu “Home” (expands)
    5.2 Click on menu “MORE >” (slides to left)
    5.3 Menu includes:
  • PLEX-SRV-NAME (Orange Circle w/exclamation-point)
    – Movies
    – Music
    – Other Videos
    – Photos
    – (GreaterThen) PLEX

NOTE: At this point I navigate back to Settings to rechecked my authorized devices and only my current Firefox session (one (1)) is present.
NOTE 2: While in the Settings view… the entire left menu (previous normal is viewable), to include the PARENT/Sub items of: ACCOUNT: Account… to Users & Sharing, PLEX WEB: General… to Player, PLEX-SRV-NAME (Green Circle w/Lock), STATUS: Dashboard… to Conversions, SETTINGS: General (Orange Triangle w/exclamation-point)… to Extras, MANAGE: Libraries… to Plugins.
MENTAL Note, that the server has a Green Circle w/Lock.

So here’s where things go South…
When I try to clear the Orange configuration/security issue, which is called out in two locations.
1.) From the PLEX Main Menu, Step 5.3 (above)
2.) From the Settings Menu, General
Both display it a little differently; however, selecting the item with the Orange (notice) takes me to a page stating… SERVER is unclaimed and not secure.
So, I click on the orange button “CLAIM IT NOW”, which takes me to the Settings > General page with another claim grey button “CLAIM SERVER”, which I click, it spins…
After about 5-7 seconds only the top left menu remains, from ACCOUNT to PLEX WEB.
All the menu items below the PLEX WEB section are gone, such as: PLEX-SRV-NAME, STATUS, SETTINGS, and MANAGE.
NOTE: Navigating back to Settings and viewing the Authorized Devices… it now displays the Plex Media Server/PC/Win10.0 (Build 17763)… so, now I have two (2) authorized devices.

At this point, I can only navigate limited menu items:
Clicking on the top left PLEX only allows me to view items from 5.3 (above).
Now I receive the error message “No soup for you! You do not have access to this server.”

At this point, I’m stuck in a loop…
In order to repeat this process, I delete all Authorized Devices, Close the browser, Exit Plex from the SysTray… and bang head on desk.

Any Thoughts/Suggestions/Flaming Criticism is all welcome.

R/, Chad

Overview

This article explains how to configure Nat Port Forwarding for Web Server on the Fortigate firewall device, so that external users can access the Web Server inside the local network

How to configure

  • Log in to Fortigate by Admin account

Fortigate Rules Plex Media Server Download

  • Firewall Object -> Choose Virtual IPs -> Click Create New
  • Name for Nat rule
  • In External Interface: Choose Port WAN of device
  • In External IP Address/Range: Enter IP WAN of device
  • In Mapped IP Address/Range: Enter IP of Web Server
  • Tick in Port Forwarding
  • In Protocol: Choose TCP
  • In External Service Port: Enter 80 for HTTP and 443 for HTTPS
  • In Map to Port: Enter for HTTP and 443 for HTTPS

-> Click OK to save

  • Policy -> Click Create New
  • In Incoming Interface: Choose Port WAN of device
  • In Source Address: Choose All
  • In Outgoing Interface: Choose Port LAN of device
  • In Destination Address: Choose Web Server was created before
  • In Service: Choose HTTP
  • Tick in Enable NAT

-> Click OK to save

Plex

Fortigate Rules Plex Media Server Login

** If you have difficulty configure Sophos products in Viet Nam, please contact us:

Fortigate Rules Plex Media Servers

Hotline: 02862711677

Fortigate Rules Plex Media Server Free

Email: info@thegioifirewall.com