Ruijie Community

Title: How to configure port forwarding/mapping on Ruijie EG? [Print this page]

Author: GTAC-Wayne    Time: 2022-3-10 19:55
Title: How to configure port forwarding/mapping on Ruijie EG?
Application Scenario
A customer deploys a server on the LAN and enables the HTTP or other services. The server address is a private address. WAN users can neither access this address directly nor use services provided by the server. In this case, you can enable the port mapping function to allow WAN users to access the LAN server.
For example, the server address is 192.168.1.3 and HTTP is enabled. As the server address is a private address, WAN users cannot directly access the HTTP service provided by the server. In this case, you can map the server address and server ports to a public network address on the EG device so that WAN users can access the HTTP service provided by the server.
Networking Requirements

Case of configuration
a) Requirement
1) The WAN line is a single 10 Mbps fixed fiber line of China Telecom. The address is 172.18.161.23, subnet mask is 255.255.255.0, WAN gateway is172.18.161.1, and DNS address is 218.85.157.99.
2) There is a remote desktop server on the LAN. The IP address of the server is 192.168.1.3. If the LAN server needs to be accessed from the WAN, port mapping is required to map the interfaces of the LAN server to the public network.

b) Network Topology

c) Configuration Key Points
1) Ensure that LAN terminals can access the server normally.
2) The server IP address and gateway are configured, and the server can access the Internet normally.
3) Determine the ports to be mapped on the server, and whether UDP or TCP is required.
4) If there are multiple WAN egresses in the real network environment of a customer (see the topology in Figure 2 above), for example, lines of China Telecom + China Netcom or China Telecom lines, dual-line port mapping needs to be configured on the LAN server. Then, WAN users of different carriers can access the server through their WAN line IP addresses. It is recommended to enable the RPL function on the WAN interfaces.

d) Configuration Steps
1) Determine that only TCP port 3389 of the server needs to be mapped.
Choose Network > NAT/Port Mapping > Port Mapping.

2) Mapping Type: Select Port Mapping from the drop-down list, indicating that a port of the LAN server needs to be mapped.
3) Internal IP: Indicates the IP address of the server.
4) Internal Port Range: Indicates the port for the server that is to provide external services.
5) External IP: Indicates the IP address of a WAN port (IP Address is selected when a WAN line is used in a dynamic environment).
6) External Port Range: Indicates the target WAN service port of port mapping.
7) Protocol Type: Indicates the protocol used by the server to provide services.
Note: EG_RGOS 11.1(6)B9 and later versions support adding continuous ports in batches. See the figure below.

Verification
Click Start and choose Remote Desktop Connection to open the Remote Desktop Connection dialog box. Enter the IP address of the WAN port.
Click Connect. The server login page is displayed.






Welcome to Ruijie Community (https://community.ruijienetworks.com/) Powered by Discuz! X3.2