Shulou(Shulou.com)06/01 Report--

The meaning of port reflux

For example, my internal network has a FTP server, and the external network has done port mapping, so that the external network can access this port and upload it. Port backflow is originally a fault-tolerant mechanism of a router. When the information arrives at the port, it will block or even return if it cannot be transmitted normally. Now it is necessary to allow the port to access the local public network IP port from the local internal network, so port reflux is required. Generally, enterprise wireless routing will have this function, and now you need to do port reflow in the H3C-DP firewall.

The first step is to do source address translation, select the interface (bond1) of the intranet switch to the firewall in the outgoing interface, select Any in the source IP of the initiator, select the IP of the intranet server to be reflowed by the destination IP of the initiator, and select the interface address in the public network IP address pool.

Step 2: do the destination address translation, select the private network interface (bond1) for the inbound interface, select the local public network IP for the public network IP, and select the IP address of the local private network server for the private network address (define the address book and service before doing port forwarding)

Note: because it is backflow and does not go through the public network access, it is no longer necessary to do packet filtering strategy for release. Pay attention to whether the ACL of the switch and firewall blocks the communication between the server and the firewall.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.