How to Forward TCP Port 443 — for SSL VPN Models

How to Forward TCP Port 443 — for SSL VPN Models

 

The SSL VPN on Draytek routers uses TCP port 443 by default, and any existing port forwards rules may be overrode by the router when using the same port. To forward traffic on TCP 443 (https) to an internal server, it’s suggested to change router's SSL VPN port and HTTPS port. In the following content, we use a Vigor2860 as the example.

Step 1 and 2 are the detailed steps to change the SSL VPN port and HTTPS port; in step 3 and 4 we make a NAT rule to forward TCP 443 port to an internal server; in step 5 we list out the Vigor models that support SSL VPN.

  1. Change the port for SSL VPN.

     1

    1. Go to SSL VPN >> General Setup.

    2. Change the Port from 443 to another. 

  2. Change the HTTPS port for Management Access Control.

     2

    1. Go to System Maintenance>>Management.

    2. Change the HTTPS Port from 443 to another.

  3. There are two methods to forward TCP 443 port to the internal server, Port Redirection and Open Ports. Here we use Port Redirection as example.

     3

    1. Go to NAT>>Port Redirection.

    2. Click Index 1.

  4. Set the Port Redirection profile.

     4

    1. Type a Service Name.

    2. Type the IP address of the Internal Server.

  5. SSL VPN equipped models:

    1. xDSL
      Vigor2830, Vigor2850, Vigor2860,

NEWSLETTER

Nom (*)
Please let us know your name.
Email (*)
Please let us know your email address.