I have configured a Generic TCP proxy on the public address, port 6300 of our bordermanager server that points to an internal server on port 80. I have configured the filter exceptions for port 6300.

I have also tried to create an ACL rule to give everyone on the internet access to the Generic TCP in different ways, but I'm unable to succeed. I can see in the proxy statistics, number of ACL denials increasing each time I try to connect so the problem is in the ACL rule.

The rule I think should be right but isn't working is the following:

source: host Ip Addresses:
IP: equals any (the Internet)

Destination: Host IP addresses: (the internal server)

Origin server port:
6300 (the port on the public interface on which the Generic TCP proxy is listening).

What am I doing wrong ?