Are you looking to do port translation on your firewall where you get a request on tcp port 4430 and convert that to a tcp 443 request that goes on to the SR 2500?
Or do you need to change the SA 2500 to accept that request on port tcp 4430 instead of tcp 443?
I am pretty sure this is not supported. You can change the ESP port to a custom one, but I don't think changing the SSL port is even supported in current versions with Pulse Secure much less the old SA2500 boxes.
I also do not think you can change the port used by the client software used with SA2500 so this would only work with web browser based connections and not client based ones in either case for the forwarding option.
------------------------------
Steve Puluka BSEET - Juniper Ambassador
IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
http://puluka.com/home------------------------------
Original Message:
Sent: 07-04-2021 08:20
From: yongjie ren
Subject: juniper SA 2500 to modify the port 443
The company needs to change the external port of ssl vpn to a port other than 443 for some reasons. I changed the external port of the firewall policy to 4430. The external network cannot open the ssl vpn login interface. The external port of the firewall policy must be port 443 to open the ssl vpn login interface. I can't find the relevant information on the official website. Has anyone encountered the same problem?
------------------------------
yongjie ren
------------------------------