External access to the web interface of a DAL device on a different port than default

If you wish to get external access to the web interface of a DAL device on a different port than default which is 443 you have two options.
If you want to add an additional port to access Web UI alongside the default port that is configured under the services section, follow option 1.
If you want to allow a different port but not allow the default port configured under the services section, follow option 2.
 
Option 1:
1. You can add the Modem interface to the Access control list of the Web administration service, but that would enable external access on both ports 443 and a the specified one.
    -First of all, please be sure that Digi`s interface in the Local Area Network has a static IP    address.
    -Then, add a port forwarding rule in the firewall configuration for a specific port, for example,  10443.
Configuration >Firewall >Port forwarding > Click Add Port Forward
   -Then, add an appropriate WAN interface to the Access control list of the Web administration service.
Configuration > Services >Web administration > Access control list > Interfaces > Chose the proper interface from drop down menu.






     Option 2:
 
  1. Another option is adding the following custom firewall rule to accept the incoming traffic on port 443
      iptables -I INPUT -i Y -p tcp -d X.X.X.X --dport 443 -j ACCEPT
      Where X.X.X.X – IP address of internal interface of Digi router
       Y – WAN interface of Digi router.
      In this example, we are using a cellular interface as a WAN.
               Configuration >Firewall > Custom rules






 
Last updated: Feb 21, 2022

Filed Under

Network

Recently Viewed

No recently viewed articles

Did you find this article helpful?