Why can't you establish an SSL VPN connection with the USG Flex H models?
Options
Zyxel_Jeff
Posts: 1,350 
Guru Member
Guru Member
in VPN
Question :
Why can't you establish an SSL VPN connection with the USG Flex H models, and why are there "Match default rule DROP" log messages?
Answer :
The possible reason is that the SSL VPN service port is not allowed from the WAN to Device security policy. For example, the Server port of the SSL VPN is 10443.
The user should add a server object for 10443, as shown below:
Add the SSL VPN service object to the service group Default_Allow_WAN_To_AyWALL.
The SSL VPN service port was successfully added to the service port group.
Once this is done, the SSL VPN connection should be established successfully.
Tagged:
0
Categories
- All Categories
- 439 Beta Program
- 2.8K Nebula
- 199 Nebula Ideas
- 125 Nebula Status and Incidents
- 6.3K Security
- 492 USG FLEX H Series
- 322 Security Ideas
- 1.6K Switch
- 83 Switch Ideas
- 1.3K Wireless
- 47 Wireless Ideas
- 6.8K Consumer Product
- 285 Service & License
- 455 News and Release
- 89 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 95 Security Highlight