SAPRouter – installation and configuration on Linux, part 2

Today we’ll continue the saprouter subject. Below You’ll find short information among others how to create the rules in to saproutertab file. Part one is here.

A few sample rules:

# SNC connection to and from SAP in Germany
KT "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" 194.39.131.34 *

# SNC connection to local system for R/3-Support
KP "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" IP_Your_SAP_Server 32XX
-- where XX is instance SAP number

# SNC connection to local system for SSH
KP "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" IP_Your_SAP_Server 22

# SNC connection to local system for WTS
KP "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" IP_Your_SAP_Server 3389
-- 3389 is default port for WTS

# SNC connection to local Java system for URL access
KP "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" IP_Your_SAP_Server 5XX00
-- where XX is instance SAP number

# SNC connection to local system for HANA
KP "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" IP_Your_HANA_Server 80XX
-- where XX is instance HANA number

# Access from the local Network to SAP
P IP_Your_SAP_Server 194.39.131.34 3299

# deny all other connections
D * * *

If You need, additional check and verify Your firewall rules. If everything is OK next You can check the connection to SAP using niping command:

server~]$ niping -c -H /H/YourHostname/H/194.39.131.34/H/localhost

Mon Apr 24 12:26:29 2023
connect to server o.k.
send and receive 10 messages (len 1000)

------- times -----
avg 23.141 ms
max 23.950 ms
min 22.736 ms
tr 84.402 kB/s
excluding max and min:
av2 23.090 ms
tr2 84.587 kB/s

server~]$