Marco Pagnotelli
Hello everyone,
I have a Zyxel USG60 that needs to connect clients to an external https server (cloud). The server gives me a timeout error. doing the same without firewall I have no errors. I would like to know how I can open a channel to the server's IP address for port 443, maintaining the current firewall rules. Thank you
Accepted Solution
-
You most likely need to create an extra WAN-to-LAN Firewall Policy Rule to allow incoming traffic from the external https server. Not sure if reverse rule is needed, since it should be safe to assume that LAN clients do not have restrictions on internet access (please verify, just in case).
The WAN-to-LAN policy rule can be restricted to single address source, but make sure you know whether there are any other required protocols other than 443/SSL. Target can be subnet (LAN).
2
All Replies
-
You most likely need to create an extra WAN-to-LAN Firewall Policy Rule to allow incoming traffic from the external https server. Not sure if reverse rule is needed, since it should be safe to assume that LAN clients do not have restrictions on internet access (please verify, just in case).
The WAN-to-LAN policy rule can be restricted to single address source, but make sure you know whether there are any other required protocols other than 443/SSL. Target can be subnet (LAN).
2 -
Thanks a lot! I'll try to do this.
0
Categories
- All Categories
- 396 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 81 Nebula Status and Incidents
- 5.1K Security
- 86 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 916 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 211 Service & License
- 337 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 2K FAQ
- 912 Nebula FAQ
- 419 Security FAQ
- 237 Switch FAQ
- 207 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 139 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 62 Security Highlight