Reyee Blog /
Blog
Product Insider
Technical Guide
Online Webinar
Home
Blog
Technical Guide

How to Configure Port Mapping to Allow a Designated Extranet User to Access a Specified Intranet Device

Ruijie Reyee
Ruijie Reyee
Sep 13, 2024
Tags:

1. Configuration Requirements

There is a CCTV camera on the intranet of a Reyee EG router with port mapping configured for this camera. To ensure security, the customer wants to allow access to the camera for a specific external user through the port mapping policy.

 
2. Device Model and Firmware

Device Type

Device Model

Firmware Version

Reyee EG

EG305GH-P-E

ReyeeOS 2.283.0.1904



3. Configuration Notes

•    Configure port ma

12132132

pping on the EG router.

•    Specify the public IP address of the designated extranet user.

•    Configure ACLs.

4. Solution
Note: This section explains how to configure port mapping to allow an external user to access an AP on the intranet of the EG router.

4.1 Configuring Port Mapping on the EG Router

IP address of intranet device: 192.168.110.4

Choose Gateway > Advanced > Port Mapping.

3.jpg

4.jpg

5.jpg

Perform an access test:

Port mapping functions properly.

5.jpg
 
4.2 Specifying the Public IP Address of the Extranet User

Visit https://whatismyipaddress.com/ to find the public IP address of the network where the extranet user is located.

6.jpg
 

4.3 Configuring ACLs

•    Configure an ACL to deny all accesses to the LAN IP address in the port mapping policy.

Note: If the destination address in the ACL is the WAN port address of the EG router, this requirement cannot be implemented. This is because data entering the WAN port from an extranet undergoes NAT before the ACL is applied. Therefore, in this case, the destination address in the ACL configuration must be the LAN IP address.

In this example, the IP address of the intranet device is 192.168.110.4, and the destination port is TCP 80.

7.jpg

8.jpg

9.jpg
 

•    Next, configure an ACL to only allow access from the public IP address in 4.2.

10.jpg
11.jpg
 

Note: After configuration, ensure that the Allow rule has a higher priority than the Block rule. If necessary, click the Match Order column to adjust the order, as rules higher up have greater priority.
 

4.4 Test

•    Test the configuration on a PC on the network that has the public IP address 112.x.x.x.

13.jpg
 

Access successful:

14.jpg
 

•    Test the configuration on a PC on the network that has the public IP address is 2xx.xxx.xxx.xxx.

15.jpg
 

Access failed:

 16.jpg

Tags: How to
Previous
Next

Related Blog

Ruijie Networks websites use cookies to deliver and improve the website experience.

See our cookie policy for further details on how we use cookies and how to change your cookie settings.

Accept All

Manage Cookies

Cookie Manager

When you visit any website, the website will store or retrieve the information on your browser. This process is mostly in the form of cookies. Such information may involve your personal information, preferences or equipment, and is mainly used to enable the website to provide services in accordance with your expectations. Such information usually does not directly identify your personal information, but it can provide you with a more personalized network experience. We fully respect your privacy, so you can choose not to allow certain types of cookies. You only need to click on the names of different cookie categories to learn more and change the default settings. However, blocking certain types of cookies may affect your website experience and the services we can provide you.

  • Performance cookies

    Through this type of cookie, we can count website visits and traffic sources in order to evaluate and improve the performance of our website. This type of cookie can also help us understand the popularity of the page and the activity of visitors on the site. All information collected by such cookies will be aggregated to ensure the anonymity of the information. If you do not allow such cookies, we will have no way of knowing when you visited our website, and we will not be able to monitor website performance.

  • Essential cookies

    This type of cookie is necessary for the normal operation of the website and cannot be turned off in our system. Usually, they are only set for the actions you do, which are equivalent to service requests, such as setting your privacy preferences, logging in, or filling out forms. You can set your browser to block or remind you of such cookies, but certain functions of the website will not be available. Such cookies do not store any personally identifiable information.

Accept All

View Cookie Policy Details

Contact Us

Contact Us

How can we help you?

Contact Us

Get an Order help

Contact Us

Get a tech support