Flex 200 and web server problems
I have a new Flex 200 and one web server behind it. I built my NAT (virtual server) and my security policy and it's still getting dropped when the traffic comes in.
At first, I thought it was because the device was on 443 for management so I reconfigured the device to use 8443 and that's working fine, but still, I can't get my web server (or my RRA) accessible from the outside.
Here's what I did:
I created an object for my external IP as a host.
I created an object for my internal IP as a host.
I created the NAT policies and the sec policy and applied them.
In the log, I'm seeing the traffic dropped with the message below:
Match default rule, DNAT Packet, DROP
i'm struggling on this one. Thanks
Accepted Solution
-
Hi @CRP0499 ,
Greeting Form, From your statements it sould like you are missing a security policy.
Please kindly check if you have the rule like this and the higher priority:
(Please check the address is the real web IP, it may private IP)
If the issue still persist, please provide the config file by private message.
Thank you
0
All Replies
-
Hi @CRP0499 ,
Greeting Form, From your statements it sould like you are missing a security policy.
Please kindly check if you have the rule like this and the higher priority:
(Please check the address is the real web IP, it may private IP)
If the issue still persist, please provide the config file by private message.
Thank you
0 -
That was it! Missing a WAN to LAN policy.
1
Categories
- All Categories
- 397 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 81 Nebula Status and Incidents
- 5.1K Security
- 91 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 918 WirelessLAN
- 35 WLAN Ideas
- 5.9K Consumer Product
- 211 Service & License
- 337 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 2K FAQ
- 920 Nebula FAQ
- 422 Security FAQ
- 237 Switch FAQ
- 208 WirelessLAN FAQ
- 47 Consumer Product FAQ
- 139 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 62 Security Highlight