Port re-directing from outside network

Posted on 2012-04-11
Last Modified: 2012-05-11
I have a customer that uses a credit card processing software.  Each month they scan his network from outside.  It shows that he has port 23 open on his network, which in fact he does.  There is a piece of software (AS400 client access) that uses that port.  I need to know of a router that I could put in place that could totally re-direct to another port.  Certain routers do that, but it needs to be able to specify a different port that redirects.  For instance, if I were to access the AS400 from outside the network, I would like to change the client access program to use port 9999 instead of 23.   Then on the router, it would say if port 9999 is coming, then change over to port 23 and use that.  I have tried changing the port# on the as400 side to another one, but I can not get it to work.  Any clients that are connecting to the as400 inside the building would still be using port 23.  Would that scenario work? Any thoughts on this?  Thanks, Kevin
Question by:kevinecaldwell

Expert Comment

ID: 37834194
Use a firewall for PAT (Port address translation) for external access IP only...9999 translates to 23.
LVL 10

Expert Comment

ID: 37834460
Any half-decent router should be able to do such thing.
And it would work exactly as you want, it opens 9999 (or any) port on the outside IP and redirects it to a given local ip address and port,from inside the lan the port would not change. Such options are usually available within router web-gui.
We would need actual router model to give you more directions.
LVL 80

Accepted Solution

David Johnson, CD, MVP earned 500 total points
ID: 37838352
Here is how I do it with my router

Expert Comment

by:Jon Snyderman
ID: 37839588
Any Wathcguard or SonicWall will do this easily.   But also being an iSeries guy, I dont recommend this.   Client Access supports full SSH encryption and there are other simpler emulators that do the same.   iSeries passwords at most companies are fairly lax and opening any port to an unsecured telnet port is very risky.   BTW, changing the port number is security by obscurity and any simple free port scanner will sniff it out very fast.   I would recommend insuring passwords are good (for everyone) and then using a secure SSH session, or use a firewall with VPN capability and let the users open a VPN session and then connect direct to the iSeries with no changes to the iSeries or Client Access.


Author Closing Comment

ID: 37959621
The TP-Link 300M router worked perfectly.  I had tried 2 other routers but they did not the same way as that one.  Thanks

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Exchange 2016 Services 1 37
Check SMTP log file on Exchange 2010 7 37
In place upgrade Win2008R2 to Win2012R2 5 20
merging or copying calender from 2 exchange mailboxes 3 16
Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question