-
[ATP/FLEX]LAN1 cannot access LAN2
Issue: The LAN1 subnet can't access LAN2 subnet Workaround: The security-policy does not allow the access by default. Please make a security-policy for the inquriement.
-
[ATP/FLEX] How to configure a NAT rule on nebula if the firewall is behind NAT?
Scenario: In a situation where the firewall is in a NAT environment and receives a private IP from the above router or gateway, how should a NAT rule be configured in the Nebula firewall? This article will explain how to configure a NAT rule on nebula if the firewall is behind another NAT router or firewall. Answer: In…
-
How to set up a full domain zone forwarder on Nebula firewall?
Question: How to set up a full domain zone forwarder on Nebula firewall? Answer: You can execute the command to solve this problem Router(config)# ip dns server zone-forwarder insert 1 * user-defined 8.8.8.8 interface auto Please note that DO NOT enter “write” after executing the command, otherwise, the device will become…
-
[ATP/FLEX]What does the "guest network" mean in interface?
Question: What does the "guest network" mean in interface? Answer: Once the guest network is enabled, clients from this interface can only access the Internet and are unable to reach other internal interface subnets hosts. For example, the VLAN99 is in default security policy by default. After enabling the "Guest Network"…
-
[ATP/FLEX]How to change Ports link speed by CLI
Scenario: Nebual platform does not support change Ports link speed. Workaround: You can change speed by CLI as alternative 1)Log in SSH or console with account admin and find your password in Nebula site setting. 2) Router> configure terminal Router(config)# port status Port2 //For example, I change Port2 status…
-
[ATP/FLEX] How to configure a VLAN interface with DHCP server in Nebula mode?
Scenario : The user may wish to configure a VLAN interface with a DHCP server. This article will guide you on how to deploy a VLAN interface with VLAN ID 10 and DHCP server. Answer : Please navigate to Site-wide > Configure > Firewall > Interface > To add a VLAN interface then configure Interface Properties, IP Address…
-
[ATP/FLEX] How to change Wan IP from DHCP IP to static IP on Nebula Firewall?
Scenario: The user may wish to change the WAN IP from DHCP IP to static IP due to switching the ISP provider. This article will guide you on how to deploy it. Answer: STEP1. Please refer to below FAQ article below to see how to enter your Nebula firewall…
-
[ATP/FLEX]How to configure a NAT rule for remote SSH access?
Scenario: The user may wish to remotely access the internal device from the internet, as it is a convenient and secure way to manage the internal device. This article will guide you on how to deploy it. Answer: Please refer to the below topology and its settings. Topology : The internet IP(10.214.40.122) ⇒ internet ⇒…
-
How to Allow Public Access to a Server Behind USG FLEX H device?
Here is an example of allowing access to the internal server behind USG FLEX H device with network address translation (NAT). Internet users can access the server directly by it's public IP address and a NAT rule will forward traffic from the internet to the local server in the intranet. Here is an exmaple that the…
-
How to set up DDNS with DNS-O-Matic service on Nebula
In case you do not have a static IPv4 address assigned to your WAN interface, you can use a free DNS-O-MATIC service to use a domain name that always resolves to your current dynamic IP address. DNS-O-MATIC service DNS-O-Matic is a free service for distributing your dynamic IP changes to multiple services (such as No-IP,…
-
[ATP/FLEX]How to configure DHCP domain name on Nebula?
Background and Scenario: Where can I configure the DHCP domain name using USG Flex and ATP in Nebula mode? Basically I need the Zyxel DHCP Server to populate the Connection-specific DNS Suffix with our local domain name. Answer: Please refer to the below steps for how to configure it: SETP1. Navigate to Firewall Configure…
-
[ATP/FLEX] How to Set up DMZ on Nebula
DMZ
is a feature to create a public zone in your network so that you can put your
public servers in that zone for public access. Its typical rule is to allow
traffic from WAN & LAN, but disallow traffic from DMZ to LAN. Although
currently, you can’t find the “DMZ” option on Nebula Control Center menu, you are still able to…
-
[ATP/FLEX] How to configure WAN Load Balancing on Nebula
You have two Internet connections. If one interface's connection goes
down, the gateway can automatically send its traffic through another interface.
For example, when WAN1 10.214.48.44 is unavailable then OPT 10.214.30.57 will
take over. WAN1 will take back when it is available. In this example, we use the OPT Port of…
-
[ATP/FLEX] How to configure a NAT Rule (Virtual Server) on Nebula?
The Virtual
Server feature is able to publish internal servers to the internet which allows
you to access services in the internal network behind Firewall. This article will explain step-by-step how to configure a NAT rule (Virtual Server), also known as Port Forwarding, on your Nebula firewalls. By following these steps…
-
[ATP/FLEX] How to set up Web AUTH with AD authentication on Nebula Firewall
Nebula
Firewall provides the option to let users authenticate into the internet with
AD authentication, offering an integrated captive portal. In
this scenario, the AD server is external Configure
Steps Go
to Configure > Firewall > Firewall settings and create an AD server
profile.…
-
[ATP/FLEX] How to add static route on Nebula?
Static route is a form of routing
that occurs when a router uses a manually-configured routing entry, rather than information
from dynamic routing traffic. In some scenarios, static routes are manually configured by
a network administrator by adding routing entries into a routing table. This example illustrates
how to…