SAP Router 参数&saprouttab规则

 

SAP Network Interface Router, Version 40.4
Compiled Aug  5 2021 01:20:49

start router : saprouter -r
stop router  : saprouter -s
soft shutdown: saprouter -p
router info  : saprouter -l (-L)
new routtab  : saprouter -n
toggle trace : saprouter -t
cancel route : saprouter -c id
dump buffers : saprouter -d
flush   "    : saprouter -f
hide errInfo : saprouter -z
start router with third-party library: saprouter -a library
generate encrypted password : saprouter -h password_to_encrypt

additional options
-R routtab   : name of route-permission-file  (default ./saprouttab)
-G logfile   : name of log file               (default no logging)
-T tracefile : name of trace file             (default dev_rout)
-V tracelev  : trace level to run with        (default 1)
-H hostname  : of running SAProuter           (default localhost)
-S service   : service-name / number          (default 3299)
-P infopass  : password for info requests
-C clients   : maximum no of clients          (default 800)
-Y servers   : maximum no of servers to start (default 1)
-K [myname]  : activate SNC; if given, use 'myname' as own sec-id
-A initstring: initialization options for third-party library
-D           : switch DNS reverse lookup off
-E           : append log- and trace-files to existing
-J filesize  : maximum log file size in byte  (default off)
-6           : IPv6 enabled
-Z           : hide connect error information for clients

expert options
-B quelength : max. no. of queued packets per client  (default 1)
-Q queuesize : max. total size for all queues (default 20000000 bytes)
-W waittime  : timeout for blocking net-calls (default 5000 millisec)
-M min.max   : portrange for outgoing connects, like -M 1.1023
-I address   : address for outgoing connects, like -I 155.56.76.6
--sock_buf_size=bufsize : socket send/receive buffer size in bytes
                          (only set if larger than OS defaults)
                          default: 32768
                          valid range: 32768 - 10000000 (0 = OS defaul

# this is a sample routtab : -----------------------------------------
D     host1                host2     serviceX
D     host3
P     *                    *         serviceX
P     155.56.*.*           155.56
P     155.57.1011xxxx.*
P     host4                host5     *          xxx
P     host6                localhost 3299
P     host7                host8     telnet
S     host9
P0,*  host10
KP    sncname1             *         *
KS    *                    host11    *
KD    "sncname "abc"       *         *
KT    sncname3             host11    *

# deny routes from host1 to host2 serviceX
# deny all routes from host3
# permit routes from anywhere to any host using serviceX
# permit all routes from/to addresses matching 155.56
# permit ... with 3rd byte matching 1011xxxx
# permit routes from host4 to host5 if password xxx supplied
# permit information requests from host6
# permit native-protocol-routes to non-SAP-server telnet
# permit ... excluding native-protocol-routes (SAP-servers only)
# permit ... if number of preceding/succeeding hops (SAProuters) <= 0/
# permit SNC-connection with partnerid = 'sncname1' to any host
# permit all SAP-SAP SNC-connections to host11
# deny all SNC-connections  with partnerid = 'sncname "abc'
# open connects to host11 with SNC enabled and partnerid = 'sncname3'

# first match [host/sncname host service] is used
# permission is denied if no entry matches
# service wildcard (*) does not apply to native-protocol-routes
# --------------------------------------------------------------------

SAP GUI配置

在PC客户机的SAP登陆属性中修改其登陆属性，增加SAP路由器字符串。其语法格式为：

/H/host1/S/<default>/W/<password1>/H/<host2>/S/<default>/W/<password2>/H/

其中，“H”表示主机IP地址，host1和host2分别是按访问路由的主机IP地址；“S”表示服务，“default”表示默认的服务内容，可省略；“W”表示密码，“password1”及“password2”分别是访问路由中所设置的密码。注意这里的“H”、“S”“W”均为大写。

图1中所示从客户机访问ERP应用服务器的一个完整访问路由可以设置为：

/H/192.168.18.222/W/passwd1/H/192.168.18.223/W/passwd2/H/

或/H/saprouter1/W/passwd1/H/saprouter2/W/passwd2/H/

并配置ERP应用服务器的IP地址：192.168.18.224