cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Use HTTP connection over SAPROUTER?

Go to solution
JK
Contributor

on ‎01-14-2009 2:36 PM

0 Kudos

hallo

i have 2 saprouters connected so i can access sap with sapgui by using saprouter string

/H/212.xx.xx.xxx/S/sapdp99/H/212.yy.yy.yyy/S/sapdp99/H/

so far no problem

i added entries in saprouttab for port 8000 as well (same es for oss service required)

how can i now access to bsp application by using this saprouter-tunnel?

i find a lot of documentation how to setup the saprouttab for http connection but not how to use it

regards

joerg

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

former_member291008
Explorer
‎06-22-2015 2:32 PM
0 Kudos

Just found this, so I thought to update here as well :

SAProuter as Port Forwarder

SAP NetWeaver Security Guide - SAP Library


Basically it explains how to setup port-forwarding using the SAProuter so you can use Telnet, HTTP and whatnot over a SAProuter connection.


Cheers!

Show replies
Show replies
Former Member
‎09-07-2016 12:51 PM
0 Kudos

Simplified here with example

Answers (4)

Answers (4)

ghulamraza
Discoverer
‎08-12-2023 5:11 PM
0 Kudos

Dear All,

I have situation that our sap HANA 2021 server needs HTTPS connection to our third party APIs which is on https://xyz.com/index.asp to insert entries into their system. I have opened https port on my firewall and it is working fine but i doubt it is a security hazard to open a direct connection on SAP server.

I want to use SAP Router for this purpose as we use in RFCs but dont know how?

Please help to set it security.

Regards

Show replies
Show replies
周建华
Participant
‎11-08-2022 8:17 AM
0 Kudos

Do you solved?

Show replies
Show replies
周建华
Participant
‎08-14-2015 3:53 AM
0 Kudos

Do you solved?

Show replies
Show replies
former_member291008
Explorer
‎08-17-2015 11:55 AM
0 Kudos

Yes, using the link above, I was able to (ab)use the SAProuter as a gateway for connections other than SAP standard.

Former Member
‎09-03-2015 8:27 AM
0 Kudos

Do you like to share the information about how you accomplished this (especially how to specify a route string on clients other than SAP GUI)?

former_member291008
Explorer
‎09-04-2015 8:25 AM
0 Kudos

You setup the Route strings on the SAProuters.

From your front-end computer you request the http page with one important exception: You do not request it from the endpoint -the server hosting it- but from the Client-SAProuter which will forward the request to the Server-SAProuter which in turn will forward it to the Server.

This is the principle of port-forwarding, ask your network specialist about it if you do not understand.

Read the article linked above and the linked pages and you do not have to be a Network Guru to get it working.

Cheers!

former_member291531
Explorer
‎09-14-2015 11:34 AM
0 Kudos

Hi Martin,

but the thing is, we never start the SAPRouter at our side using -i (Reverse Invoke), if I remember correctly.

Yet, SAP is still able to connect HTTP or Telnet into our system.

So there could be another trick used by SAP. They are not using this port forwarding feature in SAP Remote Support connection.

Thanks, by the way, for the link.

It's awesome.

Former Member
‎01-14-2009 3:05 PM
0 Kudos

Hello,

From my understanding, the saprouter routes HTTP only for SAP OSS connection.

I never found a way to use it for HTTP except for this specific use.

This is not a real reverse proxy and how would you specify the saprouter chain in a web browser ?

For dual sapgui and BSP use over a wan link, we put both a saprouter and a reverse proxy (Apache or SAP Web dispatcher) in the DMZ.

Regards,

Olivier

Show replies
Show replies
JK
Contributor
‎01-14-2009 3:17 PM
0 Kudos

ok

i just thought when sap can access over oss we might be able to use this(how can they?)

regards

joerg

Former Member
‎01-14-2009 3:51 PM
0 Kudos

>(how can they?)

That seems to be their (well kept) secret !

Olivier

Former Member
‎10-27-2009 11:02 AM
0 Kudos

some solution known?

can we connect our EP over SAPROUTER???

regards

Chris

Former Member
‎10-27-2009 1:40 PM
0 Kudos

This has been discussed here with saprouter and telnet:

I bet the same applies for http.

Cheers Michael

markus_doehr2
Active Contributor
‎10-27-2009 10:03 PM
0 Kudos

> I bet the same applies for http.

yes.

If the SAP support clicks on an HTTP connection some local scripts on their PCs will act as a proxy, so basically the connect "locally" and internal programs/proxies forward that through the saprouter connections.

To make an HTTP access from outside the network possible you can install an apache webserver and configure it as a reverse proxy.

Markus

Former Member
‎09-07-2016 12:50 PM
0 Kudos

I guess not anymore:) I somehow cracked the hidden features of saprouter.

All info are publicly available anyway, so I was just piecing them in together.

See my article

Ask a Question