How to Forward Port in AR151 Router .

Latest reply: May 26, 2015 22:35:07 7902 7 0 0

Dear All,


Device : AR151
Version : V200R003C01SPC900

Software: ar200-v200r003c01spc900

we recently purchased internet service from our IPS they provided us with Huawei AR151 Router, everything is working great but we have some servers and specially VPN which we need to log in from outside world. i am hitting my head with CLI and Firewall settings inbound and outbound but nothing is helping me out.

Please help me to reslove this issue .. suppose i want to forward a port 443 to an internal server and there is no DMZ so it should be directly forwarded to my https server.


awaiting for your support.


Thanks

  • x
  • convention:

Sentinel Created Aug 27, 2014 17:05:05 Helpful(0) Helpful(0)

Hi Malikgenius,

 

I am assuming that you have NAT configured on your router and have the firewall enabled?

 

You will need to use the NAT server command, I suggest on the WAN(ISP) interface as follows:

nat server protocol tcp global current-interface 443 inside internal-server-address 443

 

In addition you will have to modify the firewall inbound ACL to allow traffic from outside to the server, using the internal address as this works after NAT:

 

acl xxxxx

 rule xx permit destination internal-server-address destination-port 443 source any

 

This logic should work for any "internal" services you require, you can configure multiple global services but only one for each port number.

 

Regards Nigel

 

  • x
  • convention:

malikgenius Created Aug 27, 2014 18:30:53 Helpful(0) Helpful(0)

Reply 2 #

Hi Thanks for the reply,

i am new to Huawei routers, do i need to login to the router in CLI / Command Line via console ??? because i was trying the ACL configurations in GUI and it didnt work but that command you mentioned (nat server protocol tcp global current-interface 443 inside internal-server-address 443) i never tried ... so how i can log into the CLI ? is it the same way as we do in Cisco routers ?

please help and sorry to bother you :)

  • x
  • convention:

Sentinel Created Aug 27, 2014 18:41:38 Helpful(0) Helpful(0)

Hi Malikgenius,

 

Yes it is similar to Cisco routers, the best way would be via a console cable connected to the RJ45 console connection on the back of the router. By default there will be no password on there but it depends how your ISP set the router up for you? If you cannot do this you may have to create a new telnet user and give this user level 15 access and assign that to the vty interfaces to allow you to log in via telnet. I don't use the GUI myself so not sure exactly what steps you would need to take to do that please follow the link below and go to the support section. 

 

If you go to http://www.enterprise.huawei.com/ you can find the full command line documentation for these devices is available on line. If you register on the web site you will also be able to download the HedEx (Huawei Electronic Document Explorer) application and have an offline copy of the documentation for your device.

 

Regards Nigel

 

  • x
  • convention:

malikgenius Created Aug 28, 2014 15:54:30 Helpful(0) Helpful(0)

Thanks Nigel,


you were right ISP gave me level 3 access lolz, in GUI it says enterprise admin and when logged into telnet i got only level 3 access, i have asked them to give me the level 15 access,


i checked the commands its much similer to Cisco so there shouldnt be any issue i guess.. i will bother again if i need further support .... will wait till i get my access.


malik

  • x
  • convention:

malikgenius Created Aug 29, 2014 02:04:47 Helpful(0) Helpful(0)

Hi Nigel, 


i got level 15 access from ISP and i cant do anything i want, ISP guy told me that i can change my AR151 router into bridge mode so my internal firewall Fortigate can have PPPoE direct and i can have only one firewall to manage. 

can you please let me know how i can do that ? is there any easy command to change router into bridge mode :) 


Thanks 


malik

  • x
  • convention:

malikgenius Created Aug 30, 2014 02:54:58 Helpful(0) Helpful(0)

HI All, 


Issue is resolved. MY ISP Changed router into bridged mode :) 

  • x
  • convention:

dodda000 Created May 26, 2015 22:35:07 Helpful(0) Helpful(0)

I recommend using this articel http://www.vpnfaqs.com/2015/05/configure-port-forwarding-on-router/. It is very helpful you can find how to configure port forwarding on different types of routers and operating systems. It was helpful fo me while configuring port forwarding on my cisco router.

  • x
  • convention:

Reply

Reply
You need to log in to reply to the post Login | Register

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."
If the attachment button is not available, update the Adobe Flash Player to the latest version!

Login and enjoy all the member benefits

Login
Fast reply Scroll to top