Home Products Solutions Partners Support News Buy
      Message Board FAQ Technical Notes Download
 

Setting Up the GallantWEB Firewall to Workwith Symantec pcAnywhere

Summary

This document describes how to setup the firewall and NAT (Network Address Translation) service to work with Symantec pcAnywhere 8.0/9.0 software.

Running the pcAnywhere Client Behind the GallantWEB Firewall

Problem:

The workstation running pcAnywhere (client side) is on the local area network behind the GallantWEB firewall. The firewall and NAT services are enabled on the GallantWEB. When you try to connect to a pcAnywhere host computer on the Internet, you get "connection time out" error.

Solution:

Please use the following steps to configure the GallantWEB to allow the pcAnywhere client to connect to a host on the Internet.

  1. Make sure that the NAT service is correctly configured on the GallantWEB. You should be able to access web sites without using any proxy configuration on the web browser if the NAT service is running.
  2. Find the IP address of the pcAnywhere host. In this example, we assume the address is 216.217.224.33. (This IP address is just an example, please contact the person who administrates the pcAnywhere host to get the actual IP address.)
  3. Start a web browser and access the main menu of the GallantWIZARD, the web-based system administration interface of the GallantWEB.
  4. Open the "Advanced Firewall Configuration" page in the "System Administration" section of the GallantWIZARD.
  5. Click the "NEW" button.
  6. In the page titled "Create a New Firewall Rule", enter the following information:

    Firewall Rule Name: PCANYWHERE

    Firewall Rule Group: Group E

    Description: Allow pcAnywhere client behind the firewall to connect to a host

    New Packet Filter:

    7.   Action

      Protocol

     From

     To

     Direction

     Interface

     allow

     udp

      216.217.224.33 22

      any

      in

      any

    (In the above table, "216.217.224.33 22" is the IP address of the pcAnywhere host, plus a space and "22". You should replace 216.217.224.33 with the real IP address of the pcAnywhere host.)

  7. Click the "Add" button.
  8. Click the "Edit the New Rule" button.
  9. In the page titled "Edit the Firewall Rule PCANYWHERE", enter the following information to the "New Packet Filter" section:

      Action

      Protocol

     From

     To

     Direction

     Interface

     allow

     udp

      216.217.224.33 5632

      any

      in

      any

    (In the above table, "216.217.224.33 5632" is the IP address of the pcAnywhere host, plus a space and "5632". You should replace 216.217.224.33 with the real IP address of the pcAnywhere host.)

  10. Click the "Add" button.
  11. Click the "Done" button when you see that the new packet filter appears in the "Packet Filter Specification" section.
  12. Click the "Return to Firewall Configuration" button.
  13. You should see the "PCANYWHERE" rule appear in the firewall rule Group E. Click the "DONE" button in the "Advanced Firewall Configuration" page.
  14. Click the "Reboot Now" button to restart the GallantWEB.

After the GallantWEB restarts, you should be able to connect to a pcAnywhere host on the Internet to take remote control of that host, or to transfer files.

Running a pcAnywhere Host Behind the GallantWEB Firewall

Problem:

The workstation running pcAnywhere (host mode) is on the local area network behind the GallantWEB firewall. When you try to use a pcAnywhere client on the Internet to connect to the pcAnywhere host, you get "connection time out" error.

Solution:

Please use the following steps to configure the GallantWEB to allow the pcAnywhere host to accept connections from clients on the Internet.

  1. Make sure that the NAT service is correctly configured on the GallantWEB. If the NAT service is running, you should be able to access web sites from the workstation behind GallantWEB firewall, without using any proxy configuration on the web browser.
  2. Find out the internal IP address of the pcAnywhere host. The pcAnywhere host should use a static IP address. In this example, we suppose the pcAnywhere host's IP address is "10.0.0.101."
  3. Start a web browser and access the main menu of the GallantWIZARD, the web-based system administration interface of the GallantWEB.
  4. Open the "Advanced NAT Configuration" page in the "System Administration" section of the GallantWIZARD.
  5. Click the "NEW" button.
  6. In the page titled "Create a New NAT Rule", enter the following information:

    NAT Rule Name: PCANYWHERE

    Description: Setup a pcAnywhere host behind the firewall

    New NAT Specification:

    7.  Protocol

      Starting Port

     Internal Host IP Address

     Internal Host Ports

     tcp

     5631

      10.0.0.101

     5631

    (In the above table, "10.0.0.101" is the IP address of the pcAnywhere host. You should replace 10.0.0.101 with the real IP address of the pcAnywhere host.)

  7. Click the "Add" button.
  8. Click the "Edit the New Rule" button.
  9. In the page titled "Edit NAT Rule PCANYWHERE", enter the following information to the "New NAT Specification" section:

     Protocol

      Starting Port

     Internal Host IP Address

     Internal Host Ports

     udp

     22

      10.0.0.101

     22

    (In the above table, "10.0.0.101" is the IP address of the pcAnywhere host. You should replace 10.0.0.101 with the real IP address of the pcAnywhere host.)

  10. Click the "Add" button.
  11. Enter the following information to the "New NAT Specification" section again:

     Protocol

      Starting Port

     Internal Host IP Address

     Internal Host Ports

     udp

     5632

      10.0.0.101

     5632

    (In the above table, "10.0.0.101" is the IP address of the pcAnywhere host. You should replace 10.0.0.101 with the real IP address of the pcAnywhere host.)

  12. Click the "Add" button.
  13. Click the "Done" button when you see that the three new NAT specifications appear in the "NAT Specification" section.
  14. Click the "Return to NAT Configuration" button.
  15. You should see the "PCANYWHERE" rule appear in the list of NAT rules. Click the "DONE" button in the "Advanced NAT Configuration" page.
  16. Click the "Reboot Now" button to restart the GallantWEB.

After the GallantWEB restarts, you should be able to connect to the pcAnywhere host behind the GallantWEB firewall from a pcAnywhere client on the Internet. When making such a connection, the client should connect to the IP address of the GallantWEB's "outside" port, NOT the IP address of the pcAnywhere host. For example, if the GallantWEB is assigned with an IP address 216.217.224.47 on its DSL connection, and the pcAnywhere host has an IP address 10.0.0.101, you should connect to 216.217.224.47. The GallantWEB's NAT service will redirect the connection to 10.0.0.101, which is not directly accessible from the Internet.

References:

Symantec Technical Support Knowledge Base:

(All trademarks and registered trademarks are the property of their respective owners.)

Anti-Virus Solution VPN Solution Firewall Solution Web Hosting Solution NAS Server Solution Email Solution