USG60W - forward http(s) from WAN1 to local LAN7vLANs. ?
Hello Community,
i've upgraded to FW 4.39 right now - that works fine, but i've two questions about routing from WAN1 to internal (v)LANs. Here is a simple ascii scenario what i'm trying, but i can't play on the USG cause the device is in productive usage at my HomeOffice
My requirement
The USG60W is the Office to DMZ Firewall in my requiremen. the next Firewall is the INAC (InterNetAccessConnect) Firewall from my ISP. SSL VPN is working well, but how to forward http/s traffic from the ISP Firewall to an (v)LAN behind the USG60W ?
Mainly the USG60W is using 443 for HTTPS connect from WAN1 - in my scenario the USG should forward http/s to the (v)LAN behind the WAN1 port (LAN1/2/DMZ Zone). Routing is allready configured to get http/s request to the WAN1 port.
How to disable HTTPS and HTTP redirect only on WAN1 port and not for Management on LAN1 ?
SSLVPN-INAC Firewall --------> HTTP/HTTPS -----> USG -----> (v)LAN1/2/xxxx ?
Thanks and regards
Christian
Christian
0
All Replies
-
See workaround
https://businessforum.zyxel.com/discussion/comment/14529/#Comment_14529
With the ports in a group go to NAT use Virtual Server
Incoming interface WAN1
source IP any
external IP any
Internal IP the server IP
port mapping type Service-Group
external service HTTP and HTTPS group
Make firewall rule from WAN1 to LAN1
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 146 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight