Generic Proxy
A generic proxy, also known as a port forwarder, combines both features of DNAT Destination Network Address Translation and masquerading, forwarding all incoming traffic for a specific service to an arbitrary server. The difference to standard DNAT, however, is that a generic proxy also replaces the source IP address of a request with the IP address of the interface for outgoing connections. In addition, the destination (target) port number can be changed as well.
To add a generic proxy rule, proceed as follows:
-
On the Generic Proxy tab, click New Generic Proxy Rule.
The Add Generic Proxy Rule dialog box opens.
-
Specify the following settings:
Interface: Select the interface for incoming connections.
Service: Add or select the service definition of the traffic to be proxied.
Host: Add or select the target host where the traffic should be forwarded to.
Service: Add or select the target service of the traffic to be proxied.
Allowed Networks: Add or select the networks to which port forwarding should be applied.
Tip – For how to add a network definition, see Definitions & Users > Network Definitions > Network Definitions.
Comment (optional): Add a description or other information.
-
Click Save.
The new rule appears on the Generic Proxy rule list.
-
Enable the generic proxy rule.
The new rule is disabled by default (toggle switch is gray). Click the toggle switch to enable the rule.The rule is now enabled (toggle switch is green).
To either edit or delete a rule, click the corresponding buttons.