System Information
Server Details
| Property | Value |
|---|---|
| Hostname | saprouter |
| Role | SAP Router — Network Routing & Firewall |
| OS | Loading... |
| CPUs | Loading... |
| Memory | Loading... |
| IP Addresses | Private 10.128.0.111 — Public 34.46.174.105 |
| GCP Zone | us-central1-c |
| GCP Instance | saprouter-internal |
Disk Space
Click Refresh to load disk space
Status
SAPRouter Service
Unknown
Click "Check Status" to verify
Route Permission Table
/saprouter/saprouttab
Syntax Reference
Format:
P/S/D <source> <destination> <port>
P | Permit (any protocol) |
S | Permit (SAP protocol only) |
D | Deny connection |
Wildcards:
First matching rule wins (top-down)
* matches any valueFirst matching rule wins (top-down)
Port Reference:
32xx | SAP Dispatcher (inst xx) |
33xx | SAP Gateway (inst xx) |
36xx | Message Server (inst xx) |
3299 | SAPRouter default port |
8000 | ICM HTTP port |
44300 | ICM HTTPS port |
Best Practices:
- Always end with
D * * * - Use
Sinstead ofPto restrict to SAP protocol only - Specify exact IPs, avoid
*for destinations - Add comments with
#
Examples:
# Allow any source to S/4HANA
P * 10.128.15.239 3203
# Allow only SAP protocol to ECC
S * 10.128.15.241 3200
# Allow specific IP only
P 203.0.113.50 10.128.15.239 3203
# With password
P * 10.128.15.239 3203 mypass
# Deny everything else
D * * *Links
Resources
-
VM SettingsGoogle Cloud Compute Engine -
Set GCP FirewallGoogle Cloud Firewall Manager — Network security policies