Why can't you establish an SSL VPN connection with the USG Flex H models?
Zyxel_Jeff
Posts: 1,223 
Zyxel Employee
Zyxel Employee
in VPN
Question :
Why can't you establish an SSL VPN connection with the USG Flex H models, and why are there "Match default rule DROP" log messages?
Answer :
The possible reason is that the SSL VPN service port is not allowed from the WAN to Device security policy. For example, the Server port of the SSL VPN is 10443.
The user should add a server object for 10443, as shown below:
Add the SSL VPN service object to the service group Default_Allow_WAN_To_AyWALL.
The SSL VPN service port was successfully added to the service port group.
Once this is done, the SSL VPN connection should be established successfully.
Don't miss this great chance to upgrade your Nebula org. for free! https://bit.ly/4g2pS9L
Tagged:
0
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 142 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 232 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 246 Service & License
- 385 News and Release
- 82 Security Advisories
- 28 Education Center
- 9 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight