Section 31.1.6 – Westermo RedFox Series User Manual

Page 705

Advertising
background image

Westermo OS Management Guide

Version 4.17.0-0

Configuration of port forwarding rules include the following parameters:

Inbound Interface: Packets which are subject to port forwarding should come

in on the specified interface. In the example network shown in

fig. 31.9

, this

would be the external interface, i.e., the attached to the Internet.

Inbound Port (Range): Defines the range of TCP/UDP port numbers, which

are to be mapped by this rule. In the example in

fig. 31.9

Internet hosts

would reach the Web server using TCP port 8080.

Source IP Address/Subnet: Optional argument limiting the port forwarding

rule to concern a limited set of Internet hosts.

Destination IP Address: Specifies the IP address of the private server, i.e.,

where packets are to be sent. The Web server in in

fig. 31.9

has IP address

192.168.0.2.

Destination Port (Range) Specifies which TCP/UDP port number(s) to use on

the in the forwarded packet. The default is to use the same port number(s)
as on the inbound interface. In the example, the Web server on the internal
server uses TCP port 80. Note that only single port forwards can change
the destination port so that it is different from the original inbound port.
Forwarding of a range of ports always keep the port numbers. Multiple single
port forwarding rules can be used to form a range in case the destination
port numbers must be changed.

Transport Protocol (TCP/UDP): Specify if this rule applies to TCP, UDP or both.

In the example, the rule applies only to TCP.

31.1.6

Firewall Logging

The WeOS firewall supports logging for monitoring and debugging purposes.

Firewall logging is done to the kernel log file kern.log, and to a remote syslog
if configured. Internal system information will also be written to this file during
(re)boot of the system, and some configuration changes may also add informa-
tion to this log.

This log file can be viewed from the web interface via the ”View Log” function
under the menu: ”Maintenance”. It can also be viewed in the CLI with the com-
mand ”show log://kern.log”. For more information about log files and config-
uration of remote syslog, please see

chapter 25

.

➞ 2015 Westermo Teleindustri AB

705

Advertising
This manual is related to the following products:

Wolverine Series, Falcon Series, Viper Series

Popular Brands
Popular manuals