Home
SafeLinx Administrator
The SafeLinx Administrator is a Java application that lets administrators configure, monitor, and maintain the resources of one or more SafeLinx Servers.
Customizing network configuration
SafeLinx lets you customize your network configuration.
Redirecting packets to and from SafeLinx Server
Packet mapping is a way to redirect data through a mobile network interface (MNI).

SafeLinx Administrator
The SafeLinx Administrator is a Java application that lets administrators configure, monitor, and maintain the resources of one or more SafeLinx Servers.
- Controlling resources and organizational units
  SafeLinx gives you control over all resources and organizational units.
- Customizing network configuration
  SafeLinx lets you customize your network configuration.
  - Setting up a broadcast group
    You can define a group of users to which to broadcast a message.
  - Sending broadcast messages
    You can send a text message to all active users on a SafeLinx Server through broadcast messages.
  - Adding a network connection
    A mobile network connection (MNC) is the interface to a network provider.
  - Configuring intelligent connections
    You can configure the SafeLinx Server and SafeLinx Clients on Linux, Windows, or Windows CE to determine which protocol with which to connect to an Internet Protocol (IP) transport.
  - Configuring TCP-Lite
    A TCP-Lite transport is applied to a transport profile, which is a set of configuration properties that are applied to a connection profile. They are then applied to an MNC to control the performance options between an MNC and the SafeLinx Clients that connect to it.
  - Configuring HTTP codec
    You can add an HTTP codec and configure its properties.
  - Looking up users in another directory service
    You can store user account data in the same directory server (DSS) as all other SafeLinx Server resources, or you can choose to look up or manage user account data in a separate enterprise directory service. If you choose to look up data in an enterprise directory service, you must first create a directory server resource for each enterprise directory service you want to use.
  - Setting up IP addressing
    When you define a mobile network interface (MNI) and choose for IP traffic to be routed statically rather than using a dynamic host configuration protocol (DHCP) server, you set up a subnetwork.
  - Setting up network address translation
    To set up the SafeLinx Server to act as an agent between a public network and a private network and perform network address translation, add a network address translator (NAT).
  - Filtering incoming and outgoing data
    You can create filters to be associated with a mobile network interface (MNI) to control data access to and from all IP-attached clients.
  - Redirecting packets to and from SafeLinx Server
    Packet mapping is a way to redirect data through a mobile network interface (MNI).
  - Routing traffic to a subnetwork
    A routing alias is a SafeLinx Client acting as a multihomed destination gateway to route data between the SafeLinx Server and a subnetwork that you specify.
- Configuring for security
  SafeLinx includes options for configuring security.
- Managing administrators
  SafeLinx provides the tools to manage administrators.
- Managing users
  SafeLinx provides the tools to manage users.
- Troubleshooting problems
  SafeLinx helps you troubleshoot problems.
- What is...
  SafeLinx Administrator Help identifies and clarifies necessary topics.

Redirecting packets to and from SafeLinx Server

Packet mapping is a way to redirect data through a mobile network interface (MNI).

To create a packet mapping, right-click the organizational unit (OU) in which you want to add the packet mapping, click Add Resource > Packet Mapping , and then select the packet type.

Packet mapping lets you:

Redirect certain types of data packets according to various criteria. The types of packets are TCP, UDP, ICMP, and other.
Change specific fields within the packet header
Change specific character strings within the packet data

For example, you have a subnet of email application programs running on SafeLinx Clients that is configured to connect to sendmail servers that listen on well-known port 25. An email server is optimized for SafeLinx Clients and is configured to listen on port 9000; port 25 continues to be used by other client applications. Because email uses simple mail transfer protocol (SMTP), a TCP application, you can set up a TCP mapping function on the SafeLinx Server to redirect all outgoing mail packets from port 25 to port 9000.

For all mappings, you can redirect packets:

From a single IP address or from a group (subnet) of IP addresses
To a single IP address or to a group (subnet) of IP addresses
Only when the packet is going to a SafeLinx Client or coming from a SafeLinx Client.

The following table describes more mapping criteria that you can specify according to the type of packet that is received by the Connection Manager:

Filter type	Filter criteria
TCP packets	You can qualify the mapping according to the port that is used by the originator or the receiver of the packet. You can further qualify the mapping by specifying a from-flag and a to-flag in the packet header. Note: Flags should only be used by protocol experts who require this level of differentiation for a special purpose.
UDP packets	You can qualify the mapping according to the port used by the originator or the receiver of the packet.
ICMP packets	You can qualify the mapping according to a specific type of ICMP packet. For some specific ICMP packets, you can further qualify according to the code that applies to the packet.
Other packets	You can qualify the mapping according to a specific type of IP-protocol. Specify a search for a specific character string within the packet header.

Rate this topic

5 stars 4 stars 3 stars 2 stars 1 star

Comment on this topic.

By clicking this box, you acknowledge that you are NOT a U.S. Federal Government employee or agency, nor are you submitting information with respect to or on behalf of one. HCL provides software and services to U.S. Federal Government customers through its partners immixGroup, Inc. Contact this team at https://hcltechsw.com/resources/us-government-contact. Do not include any personal data in this Comment box. Note: To report a problem or question about the product software, do not use this form. Instead, go to the HCL Software Support site.