Technical Support

Need help?

 

How can I port forward (DNAT - Advanced mode) an internal server in Panda GateDefender eSeries?

Information applies to:

Products
Panda GateDefender Integra eSeries
Panda GateDefender Performa eSeries

This article describes the necessary steps to configure an advanced Destination NAT (or Port forwarding) on Panda GateDefender eSeries appliance.

The primary purpose of DNAT (or Port forwarding) is to take an internal application (IP and port) and expose that to the Internet to make it more widely accessible. This is commonly used for public access to web, mail, ftp, and other types of services.

Advanced configuration example

In this example, a DNAT (Port forwarding) for a range of ports for a web server in the Orange (DMZ) network will be configured. We will use one of our statically assigned public IP addresses as our external entry point for this exposed service.

Network diagram: DNAT Advanced

  1. Create a new DNAT rule by configuring all the necessary fields to make it match our example network.

    DNAT Advanced settings
  2. Select Advanced Mode on the top right hand corner of the console and specify the source network allowed to access this rule.

    Notice the Filter Policy combo box which by default is set to Allow with IPS. This means that the rule allows qualified traffic but inspects it with the IPS engine.
  3. Click Create Rule button.
  4. Once the rule is created, apply the rule to the device by clicking the Apply button.

    Apply DNAT Advanced rules
  5. Now that the rule has been successfully applied, you can test it accessing the IP 200.150.10.4 on ports 10080-10085 from the Internet.

Help nº- 20130314 41802 EN
ALWAYS ONLINE TO HELP YOU TWITTER FORUM
ALWAYS ONLINE TO HELP YOU TWITTER FORUM