LANCOM Support Knowledgebase Document No. 1712.0614.2144.RHOO - V2.30

Creating an exposed-host configuration on a LANCOM router


Description:
This document describes how to configure a LANCOM router so that, for example, a downstream firewall acts as an exposed host.
    Important notice:
    Please note that a device that acts as an exposed host is accessible unprotected from the WAN by means of the forwarded ports.



Procedure:

1) Open the configuration for the LANCOM router and switch to the menu item IP router -> Masquerading -> Port forwarding table.

2) Add the port-forwarding entries as shown in the following figure.
  • The entries in the red box are the ports that the LANCOM router forwards to the downstream firewall in the LAN.

    The IP address set to the
    local IP address of the firewall. The Remote site is the Internet connection configured on the LANCOM router.
  • The entries in the green box are the ports that are used directly by the LANCOM router and are not forwarded to the firewall (e.g. HTTPS, VPN, VoIP, etc.). If these services are not required by the LANCOM router, they can also be forwarded to the exposed host.


    The configuration described above is available as a ready-made script for uploading to the LANCOM router:

    exposed_host.lcsexposed_host.lcs

    Please note that before installing this script you need to replace the configured IP address (192.168.2.10) with the local IP address of your firewall.

Catchwords: exposed host; port forwarding; port; forwarding
Please review this document! This document was helpful This document was not helpful