How do I open the firewall for incoming traffic?

I run a server behind my firewall that the support team needs access to from the outside, so I need to 'open up' the firewall for this.

Embarrassingly enough I have never had to do this from scratch and am at a loss.

The firewall is a 'NETGEAR ProSafe VPN Firewall FVS336GV2'.

I am assuming that this is under the routing section?
I have the - supposed - setting in the image, but somehow that doesn't feel right.
Please help me:
1 - understand what section this should be in (generally on firewalls)
2 - what the technical term for what i am trying to do is
3 - how do I do it?

Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

You want to make use of port forwarding.

You will basically map the x port of your public IP address to an IP and port on your internal network (usually the ports will be the same inside and out)

This link should give you more detailed information for configuring for netgear.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Neil RussellTechnical Development LeadCommented:

Since this server is on the inside, you don't want to open up the outside world your internal network.  And looking a the picture, you don't want to do it in the "Routing" section.  What I recommend is set the server on the DMZ.  This will segregate the server away from the Internal network and allow your support team on the outside access the server.  

Another option is to setup a VPN setup where the support team can VPN in and connect to that box.  It maybe on the NetGear ProSafe, or you can use the Cisco ASA, or OpenVPN.  Also Astaro has a free virtual box that may work for you that includes most of everything.

Hope that helps.
somewhereinafricaAuthor Commented:
Ok thanks Neilsr for showing where it is.
Little did i know that the 'logical' place was VPN -> SSL VPN -> Port forwarding, what a dumb place to put that :-/

I do not want to move the server and put it on a DMZ, that would actually increase the security risk since no policies would be covering it at all.

ok, so now when I have the right place:

"Add New Application for Port Forwarding:"
This would thus be the IP of the server that runs this software
I add the IP and the port number (3817)

Then what?
"Add New Host Name for Port Forwarding:"
I can put an IP and a FQDN, would that be the actual name of the server? ( server-name.localdomainname.local )
and by adding that, what does that do?
Syed_M_UsmanSystem AdministratorCommented:
dear if you want to give temporary access to suport install teamviewer on your computer and from your computer take remote session of computer in your question, this will help you you dont have to play with your firewall + you will know what support guys do

in case you dont want above suggestion why dont you allow vpn client for support user, as i can see from attached screen shot there is vpn option.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Hardware Firewalls

From novice to tech pro — start learning today.