Configuring Port Forwarding
Context
This section describes how to enable port forwarding and assign port forwarding resources for users.
Procedure
- Enable port forwarding.
You need to select Enable only when configuring port forwarding services by clicking
at the right side of the virtual gateway. If you configure port forwarding services in wizard mode, Enable will be selected by default.- In the Configure Port Forwarding area, select Port Forwarding.
- Optional: Select Automatic Enabling and Preserve Connections if required.
- After Automatic Enabling is selected, port forwarding is automatically enabled on the client upon login to the virtual gateway page.
- After Preserve Connections is selected, the client periodically sends packets to the virtual gateway to prevent SSL session from timeout. This keeps alive the port forwarding connections between the client and the virtual gateway.
- Configure port forwarding resources.
- Click Add in the Port Forwarding Resource List area.
If the configuration of the new resource is similar to that of an existing resource, you can select the existing resource, click
, and create a file sharing resource based on the parameters of the existing resource. - Configure port forwarding resources.
Parameter
Description
Name
Defines a name for the port forwarding resource accessible to users.
Host Address Type
Specifies the mode in which users access port forwarding resources.
- If you select Host Name, users can access the specified domain names or host names on the intranet but cannot access the same domain names on other networks.
In this case, you need to ensure that the DNS server has been configured on the virtual gateway and the related configurations have been completed on the DNS server.
- If you select Host IP Address, users can access the specified IP addresses on the intranet but cannot access the same IP addresses on other networks.
- If you select Any IP Address:
- If the DNS server is not specified on the virtual gateway, users can access the specified port of any host on the intranet through IP addresses and access Internet resources except the specified port, but cannot access intranet or Internet resources through domain names.
- If the DNS server has been specified on the virtual gateway, users can access the specified port of any host on the intranet through domain names or IP addresses and access Internet resources except the specified port through IP addresses, but cannot access intranet or Internet resources through domain names.
NOTE:If you select Any IP Address, all users associated with the resource will not be allowed to use domain names to access the Internet. Exercise caution when you select this host address type.
Host Name
Specifies the domain name or host name of the intranet host accessible to users.
Host IP Address
Specifies the IP address of the intranet host accessible to users.
Port
Specifies the TCP port of the intranet resource accessible to users.
In the TCP/IP protocol suite, each port is mapped to a service. A well-known port is a port reserved for the use of system (root) processes or of programs executed by privileged users for specific applications or services. Well-known ports are numbered 0 through 1023. Table 1 lists some port numbers that are frequently used for port forwarding.
NOTE:Access control over port forwarding resources on a virtual gateway is implemented through destination-IP-address-based policies.
Description
Describes port forwarding resources. This exerts no impact on any other configuration.
You are advised to describe the host name or IP address in Description. The Description field is displayed on the virtual gateway page for users to access the virtual gateway based on the host name or IP address.
- If you select Host Name, users can access the specified domain names or host names on the intranet but cannot access the same domain names on other networks.
- Click OK.
- Click Add in the Port Forwarding Resource List area.