x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 40% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
BLACKFRIDAY OFFER
Buy the best antivirus
at the best price
TODAY ONLY UP TO 70% OFF
x
CYBERMONDAY OFFER
Buy the best antivirus
at the best price
(Only for homeusers)
TODAY ONLY UP TO 70% OFF

Technical Support

Need help?

 

How can I create or modify a service in Panda GateDefender Integra?

Information applies to:

Products
Panda GateDefender Integra 100
Panda GateDefender Integra 300 

By default, Panda GateDefender Integra includes a series of individual services and groups of services in order to simplify firewall configuration.

When it comes to creating filter rules or in NAT rules, Panda GateDefender Integra lets you include and modify services. It is also possible, from the administration console, to apply the rule to a specified service or define the rule to apply to a group of services. In this way, identical rules that are to be applied to different services can be grouped together as a single rule to simplify administrations tasks.

This document describes how to create or modify a service from Panda GateDefender Integra generically, and, in particular, in the following cases:

 

How to create or modify a service

  1. Access the administration console of Panda GateDefender Integra.
  2. Click on Definitions in the panel on the left.
  3. Select Services.
  4. In the Services section, click on the Add button to enter a new service or Modify if you want to modify one that already exists. This will take you to a screen with the following options:

    • Name: Enter a descriptive name of the service.
    • Protocols: Use the checkboxes to include and configure protocols that will use the service:

      • TCP: Enter the source and destination ports. These ports can be entered by range or separated by commas.
      • UDP: Enter the source and destination ports. These ports can be entered by range or separated by commas.

        NOTE: In the source port field you can specify the source port that will be used by the service, although normally this port will be established at random by the client -over port 1024 (assigned ports)-, so this field should be left empty. In the destination port field you should indicate the destination port to be used by the service. For example, to define the SMTP mail service, the source port should be left blank, and the destination port should be port 25.

        Additionally, Panda GateDefender Integra allows the use of ranges for TCP and UDP protocols.
        The syntax for entering a range is: lowest port number - highest port number. For example, if the range is 1-1023, 1 is the lowest port and 1023, the highest port.
      • IP: When you select this, a text box will be activated so you can enter the protocol number.
      • ICMP: If enabled, you can choose the corresponding Type and Code.
    • Service groups to which it belongs: List displaying the groups created. Select the groups to which the service will belong. Once the service is included in a group, this will be reflected in the list the next time you access the screen to make modifications.
    • Comment: If you want you can enter a comment about the selected service.
  5. Otherwise, click on Cancel.

Below you will find some examples of how to define services for applications that use TCP, UDP, or even IP.

 

Scenario 1:How to create a service for remote SSH access

Below you will see the parameters needed to define the service in a scenario in which a computer will be accessed remotely via SSH and in which the SSH daemon of the server is configured to listen on port 222 (TCP) instead of the standard port 22.

  • Name: Assign for example ‘SSH port 222’ as the descriptive name.
  • Protocol: Enable the TCP protocol checkbox. In this case the application requires that the destination port (222) is specified, as the source port can be any.

Remember to click on Add to save the changes. The following diagram illustrates how the service will be configured:

 


The service created is at the end of the list of services:

 

 

Scenario 2: How to create a service to establish a VPN Gateway tunnel

In this scenario an IPSEC VPN server is behind Panda GateDefender Integra. This server needs to establish a VPN tunnel with another gateway on the Internet. UDP packets are exchanged between gateways using source and destination port 500 for the IKE phase. Therefore, the firewall must allow these inbound/outbound packets.

 


The image below illustrates the basic parameters to define the new service for the proposed scenario and so it can be used later in firewall configurations.

  • Name: Assign for example ‘IPSEC UDP 500’ as the descriptive name.
  • Protocol: Enable the UDP protocol checkbox. In this case the application requires that you specify both the source and target ports as 500.

Remember to click on Add to save the changes. The following diagram illustrates how the service will be configured:

 


The service created is at the end of the list of services:

 

Help nº- 20070702 31491 EN

Have you resolved your query with this article?

yes no

Thanks for your answer


Why didn't you find it helpful?


The instructions are too complex.
The instructions are too long.
The instructions don't work.
I'd rather have a video.
Other reasons.




Talk to a technician!

 

Business hours: Mondays-Fridays 9:00 to 18:00 CET

Outside business hours, please use the online form.





ALWAYS ONLINE TO HELP YOU TWITTER FORUM RATE US CHAT
ALWAYS ONLINE TO HELP YOU TWITTER FORUM RATE US CHAT