Marco Pagnotelli
Hello everyone,
I have a Zyxel USG60 that needs to connect clients to an external https server (cloud). The server gives me a timeout error. doing the same without firewall I have no errors. I would like to know how I can open a channel to the server's IP address for port 443, maintaining the current firewall rules. Thank you
Accepted Solution
-
You most likely need to create an extra WAN-to-LAN Firewall Policy Rule to allow incoming traffic from the external https server. Not sure if reverse rule is needed, since it should be safe to assume that LAN clients do not have restrictions on internet access (please verify, just in case).
The WAN-to-LAN policy rule can be restricted to single address source, but make sure you know whether there are any other required protocols other than 443/SSL. Target can be subnet (LAN).
2
Master Member
All Replies
-
You most likely need to create an extra WAN-to-LAN Firewall Policy Rule to allow incoming traffic from the external https server. Not sure if reverse rule is needed, since it should be safe to assume that LAN clients do not have restrictions on internet access (please verify, just in case).
The WAN-to-LAN policy rule can be restricted to single address source, but make sure you know whether there are any other required protocols other than 443/SSL. Target can be subnet (LAN).
2 -
Thanks a lot! I'll try to do this.
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 151 Nebula Ideas
- 98 Nebula Status and Incidents
- 5.7K Security
- 277 USG FLEX H Series
- 277 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.4K Consumer Product
- 250 Service & License
- 395 News and Release
- 85 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.6K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 75 Security Highlight
