Flex 100 Policy Control Question

scotters
scotters Posts: 1

Admittedly, I've been sick for several days, and brain fog is affecting me. In addition, it's been too long since I've been in a Zyxel.

Here's my scenario: client with a Flex100 has a device on DMZ. That device now needs to have some ingress data allowed. Have the address and service objects and groups created. But think my issue is in remembering the set up for the Virtual server NAT and then corresponding policy control rule. If the scenario is: traffic from address group 1, with service group A traffic, is allowed into DMZ object IP…how do each of those look?

Thanks a ton!

All Replies

  • PeterUK
    PeterUK Posts: 3,316  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary

    So a Virtual server NAT would be

    Incoming interface your WAN

    External IP best to make a address type interface IP of WAN

    Internal IP of the device on DMZ

    port you want to forward

    Policy Control

    From WAN

    to DMZ
    source IP if needed to limit from where

    service of port forwarded

Security Highlight