- Home »
- FAQ »
- Connectivity »
- NAT »
- How to forward HTTPS traffic (TCP port 443) to an internal server?
How to forward HTTPS traffic (TCP port 443) to an internal server?
Network administrator may set up NAT setting, such as Port Redirection and Open Ports, to forward connection requests to an internal server. But when it comes to HTTPS requests, which uses TCP port 443, we need not only set up NAT but also change the router's HTTPS management port and SSL VPN port, because by default those functions also use TCP port 443 and will override the NAT settings.
To forward the traffic on TCP port 443 to an internal server:
1. Change the port for HTTPS management: Go to System Maintenance >> Management, change HTTP Port from 443 to other number, then click OK to apply.
2. Change the port for SSL VPN function: Go to SSL VPN >> General Setup, change Port from 443 to other number, then click OK to apply. (Note: For models that does not support SSL VPN, you may skip this step.)
3. Now, the TCP port 443 can be used for Port Redirection settings. Go to NAT >> Port Redirection, click on an available index.
4. Enable the profile, and configure the profile as follows, then click OK to apply:
- Mode: Single
- Protocol: TCP
- Public Port: 443
- Private IP: The IP address of the internal server
- Private Port: 443
Now, when there's a client on the internet sends HTTPS traffic to the router's WAN interface, it will be forwarded to the internal server.