Port forwarding redirects incoming connections from the Internet to an internal host behind the firewall. For example, you may have an HTTP server on your network and you want to make it accessible to the Internet.
Note: Port Forwarding exposes services on your network to the public Internet and should be used only when necessary.
Adding / Editing Port Forward Rules
- Go to Settings > Firewall > Port Forward to configure Port Forwarding.
- Click Create New Rule or edit an existing rule by clicking the edit icon next to the item.
- Give the rule a description.
- In the Add Condition panel choose Destination > Destination Port and enter a value (e.g. 443) and click Add Condition. See Rules Overview for advanced syntax options of this field.
- In the Add Condition panel choose Source > Source Interface Type is WAN and click Add Condition.
- If you want to restrict access to the port, add a Source condition to the rule. For example, you can restrict access to only a single WAN IP with Source Address is 126.96.36.199. Click Add Condition to confirm.
- Specify the action New Destination and enter the IP address of the internal host where you want to forward the requests based on the port.
- If you want to translate the port, enter a new value in the optional Port field. If the traffic should be forwarded on the same port it arrived on, leave this value blank.
- Click Create Rule.
- Click Save to confirm the new rule.
Verifying Port Forwarding
You can use the SD-WAN Router's Reports function to verify your new Port Forward is working. Open Reports > Sessions > Sessions and add the column 'New Server Address':
Finally, add a Global Filter for the server address at the top right-hand corner. This will filter the report down to only those which include that IP address.Follow