Shulou(Shulou.com)06/02 Report--

The following operations are done through the WEB user management interface:

Add a custom service port

1. Select the menu Objects > Services > Custom to enter the custom service management page.

2. Click the New button in the upper right corner to enter the custom service add page.

Enter the custom service name at Service Name, select the protocol you want to use at Transport protocol, enter the destination port of the custom service at Destination Port, and click the OK button to submit the operation. In the figure above, we added a service called LINSHI-8899, which uses the UDP protocol and the destination port number is 8899.

3. Select the menu Network > Interfaces (List), find the port name corresponding to Untrust Zone (the port corresponding to Untrust Zone in the figure is ethernet0/0), and click the Edit button on the right to enter the port editing page.

4. Click the VIP button in Properties to switch to the VIP management page.

When you add VIP settings for the first time, if you have multiple public network IP addresses, you can choose to fill in your Virtual IP Address. If ISP only provides you with a public network IP address, or if you get the public network IP through PPPOE, you can select Same as the untrusted interface IP address and click the Add button to submit.

5. Click the New VIP Service button to enter the VIP service add page.

6. Add VIP Service related information

Select an existing service type or a custom service in the Map to Service drop-down list, as shown in the figure I previously had a LINSHI-3389 service.

Fill in the address you need to map in the Map to IP. Do not check the Enable option after Server Auto Detection, click the OK button to submit.

Note: if you need to set different ports in the internal and external network, Virtual Port enter the port of your public network, and Map to Service is the port of your private network. If you set port 8899 to access the public network below, it will be mapped to port 3389 of the private network host.

7. Select the menu Policies, go to the policy management page, select From in the upper left corner, select Untrust Zone,To, select Trust Zone, and click NEW to enter the new From Untrust To Trust policy page.

The Source Address (source address) selects the Any,Destination Address (destination address) from the Address Book Entry, selects the relevant VIP service from the Address Book Entry, and Service selects the custom service. In the figure, we selected the destination address VIP (ethernet0/3) that we added earlier, and Service I selected multiple port services here. Because I am setting different port mappings between internal and external networks, I need to open 2 ports. When finished, click the OK button to submit.

At this point, the port mapping is complete. If you need to add multiple port mappings, the method is similar.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.