Saprouter is basically a reverse proxy for SAP systems, typically sitting
between the Internet and internal SAP systems. Its main purpose is to allow
controlled access from hosts on the Internet to the internal SAP systems, since
it allows for a finer grained control of SAP protocols than a typical firewall.
This means that saprouter usualy ends up being exposed to the Internet, by
allowing the inbound TCP port 3299 to the saprouter host on the organization's
firewalls. And from the saprouter,