Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Port forwarding
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
Port forwarding - 24.Jan.2007 10:27:31 AM
|
|
|
Zulan
Posts: 39
Joined: 28.Nov.2006
Status: offline
|
Hello!
Today I'm using a checkpoint firewall and I have tons of what they call "address translation" rules. They are just simple port forwarding rules. I am evaluating ISA server 2006 to replace this server but I can't find the equivalent of address translation anywhere in ISA server 2006.
Any idea where I can find the settings or how I create them?
|
|
|
|
|
RE: Port forwarding - 24.Jan.2007 10:53:53 AM
|
|
|
sloppyjones
Posts: 8
Joined: 8.Nov.2006
From: Nazareth Pa
Status: offline
|
port forwarding is also called a publishing rule in isa. many protocols are alreay loaded in isa, or you can make your own by making a non-server publishing rule and specify port etc.
|
|
|
|
|
RE: Port forwarding - 25.Jan.2007 3:28:18 AM
|
|
|
Zulan
Posts: 39
Joined: 28.Nov.2006
Status: offline
|
I guess I misused the word port forwarding since that wasn’t was I was after.
Let’s create a scenario.
I have a web server in my LAN running on port 80. I want to publish this on port 200 without changing the port on my webserver. In the checkpoint world I create an access rule for port 200. I then create an address translation rule translating port 200 to port 80 forwarding it to my internal webserver. It’s almost as it’s a part of the publishing rule and really easy to do and find. Even my home d-link router has this option whenever you publish something, but there it’s called Private and Public port.
|
|
|
|
|
RE: Port forwarding - 25.Jan.2007 3:58:47 AM
|
|
|
Zulan
Posts: 39
Joined: 28.Nov.2006
Status: offline
|
Ahh, I finally found it. Here’s what you do. You create a new Non-web server publish rule. When it asks you for protocol, choose port 200, then press the port button. Under Published Server Ports choose “Send requests to this port on the published server” and choose port 80. Done, working just the way I want.
|
|
|
|
|
RE: Port forwarding - 27.Jan.2007 12:25:03 PM
|
|
|
tshinder
Posts: 47490
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Zulan,
That's one way to do it. The other would be to configure the Web listener to listen on TCP 200. That way you get the application layer inspection from Web Publishing Rules.
HTH,
Tom
_____________________________
Thomas W Shinder, M.D.
Sr. Consultant/Technical Writer
Prowess Consulting http://www.prowessconsulting.com/
Blog: http://blogs.isaserver.org/shinder/
GET THE NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8
|
|
|
|
|
RE: Port forwarding - 31.Jan.2007 5:35:52 AM
|
|
|
Zulan
Posts: 39
Joined: 28.Nov.2006
Status: offline
|
Yes, that would be a prefered way. That's the way I was trying to do it and that's the reason I had this problem initially. This is beacuse if you configure it as a published web rule, the "port" button that I mentioned is no longer there so you can't really do it with applicaciton layer instpection or am I doing something wrong?
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
