D-Link DFL-200 Port mapping / Virtual Servers

32

Port mapping / Virtual Servers

The Port mapping / Virtual Servers configuration section is where you can configure virtual

servers like Web servers on the DMZ or simila r. It is also possible to use Intrusion Detection /

Prevention on Port mapped services, these are done in the same way as on policies, so see

that chapter for more information.

Mappings are read from top to bottom, and the fi rst matching mapping is carried out.

Add a new mapping

Follow these steps to add a new mapping on the WAN interface.

Step 1. Choose the WAN policy list from the available policy lis ts.

Step 2. Click on the Add new link.

Step 3. Fill in the following values:

Name: Specifies a symbolic name for the rule. This name is used mainly as a rule

reference in log data and for easy reference in the policy list.

Source Nets: Specify the source networks, leave blank for everyone (0.0.0.0/0).

Source Users/Groups: Specifies if an authenticated username is needed for this

mapping to match. Either make a list of usernames, separated by , or write Any for any

authenticated user. If it’s left blank there is no need for authentication for the policy.

Destination Nets: Leave empty for the interfaces own IP or enter a new IP if using Virtual

IP.

Service: Either choose a predefined service from the dropdown menu or make a custom.

Pass To: The IP of the server that the traffic should be passed to.

Schedule: Choose what schedule should be used for this mapping to match, choose

Always for no scheduling.

Click the Apply button below to apply the change or click Cancel to discard changes

Contents

Main Contents Page Page Page Page Introduction Features and Benefits Introduction to Firewalls Introduction to Local Area Networking LEDs Physical Connections Page Managing D-Link DFL-200 When a change is done to the configuration a new icon named Activate Changes Resetting the DFL-200 Administration Settings Administrative Access Add ping access to an interface Add Admin access to an interface Add Read-only access to an interface Enable SNMP access to an interface System Interfaces Change IP of the LAN or DMZ interface WAN Interface Settings Using Static IP WAN Interface Settings Using DHCP WAN Interface Settings Using PPPoE WAN Interface Settings Using PPTP WAN Interface Settings Using BigPond MTU Configuration Routing Add a new Static Route Remove a Static Route Logging Enable Logging Enable Audit Logging Enable E-mail alerting for ISD/IDP events Page Page Changing time zone Using NTP to sync time Setting time and date manually Firewall Policy Policy modes Action Types Source and Destination Filter Service Filter Schedule Intrusion Detection / Prevention Add a new policy Change order of policy Delete policy Configure Intrusion Detection Configure Intrusion Prevention Port mapping / Virtual Servers Add a new mapping Delete mapping Users The DFL-200 RADIUS Support Enable User Authentication via HTTP / HTTPS Enable RADIUS Support Add User Change User Password Delete User Schedules Add new recurring schedule Services Adding TCP, UDP or TCP/UDP Service Adding IP Protocol Grouping Services Protocol-independent settings VPN Introduction to IPSec Introduction to PPTP Introduction to L2TP Point-to-Point Protocol Authentication Protocols PAP CHAP MS-CHAP v1 L2TP/PPTP Clients L2TP/PPTP Servers Page VPN between two networks Creating a LAN-to-LAN IPSec VPN Tunnel VPN between client and an internal network Creating a Roaming Users IPSec VPN Tunnel Adding a L2TP/PPTP VPN Client Adding a L2TP/PPTP VPN Server VPN Advanced Settings Proposal Lists IKE Proposal List IPSec Proposal List Certificates Trusting Certificates Local identities Certificates of remote peers Certificate Authorities Identities Content Filtering Active content handling Edit the URL Global Whitelist Edit the URL Global Blacklist Page Servers DHCP Server Settings Enable DHCP Server Enable DHCP Relay Disable DHCP Server/Relayer DNS Relayer Settings Enable DNS Relayer Page Too ls Ping Ping Example Dynamic DNS Add Dynamic DNS Settings Backup Exporting the DFL-200s Configuration Restoring the DFL-200s Configuration Page Page Page Upgrade Upgrade Firmware Upgrade IDS Signature-database Status System Interfaces VPN Connections DHCP Server Page How to read the logs USAGE events DROP events CONN events Page Step by step guides LAN-to-LAN VPN using IPsec Page Page Page LAN-to-LAN VPN using PPTP Page Page Page Page Page Page LAN-to-LAN VPN using L2TP Page Page Page Page Page Page A more secure LAN-to-LAN VPN solution Page Page Page Windows XP client and PPTP server Settings for the Windows XP client Page Page Page Page Page Page Page Page Page Windows XP client and L2TP server Settings for the Windows XP client Page Page Page Content filtering Page Page Page Intrusion detection and prevention Page Page Appendixes Appendix A: ICMP Types and Codes Page Appendix B: Common IP Protocol Numbers LIMITED WARRANTY Product Type Warranty Period Limited Software Warranty: What You Must Do For Warranty Service: What Is Not Covered: Disclaimer of Other Warranties: Limitation of Liability: GOVERNING LAW: This Limited Warranty shall be governed by the laws of the state of California. Page Page Offices