Port Mapping / Virtual Servers; Add A New Mapping - D-Link DFL-200 - Security Appliance User Manual

Port mapping / Virtual Servers

The Port mapping / Virtual Servers configuration section is where you can configure virtual
servers (such as a LAN Web server) to allow WAN access to specified LAN or DMZ servers.
It is also possible to use Intrusion Detection / Prevention on Port mapped services. These are
applied in the same way as with policies. See the previous chapter for more information.
Mappings are read from top to bottom, and the first matching mapping is carried out.

Add a new mapping

Follow these steps to add a new mapping on the WAN interface.
Step 1. Click on the Add new link.
Step 2. Fill in the following values:
Name: Specifies a symbolic name for the rule. This name is used mainly as a rule
reference in log data and for easy reference in the policy list.
Source Nets: Specify the source networks, leave blank for everyone (0.0.0.0/0).
Source Users/Groups: Specifies if an authenticated username is needed for this
mapping to match. Either make a list of usernames, separated by a comma (,) or write
Any for any authenticated user. If it is left blank there is no need for authentication for the
policy.
Destination IP: Leave empty to use the WAN IP of the firewall, or enter an additional IP
address to be forwarded to the specified Pass To address.
Service: Either choose a predefined service from the dropdown menu or make a custom
service.
Pass To: The IP of the server that the traffic should be passed to.
Schedule: Choose which schedule should be used for this mapping to match. Choose
Always for no scheduling.
Click the Apply button below to apply the changes or click Cancel to discard changes.
Note: Refer to Appendix C of the manual for details on mapping Public IP addresses to
Internal Servers.
30