Problem port forwarding on USG 100-Match default rule, DROP-ACCESS BLOCK
Hi,
Hopefully someone can help me.
I'm trying to port forwarding port 80 to a web server but the firewall is blocking it. I've done this many times before successfully but I'm having an issue this time...
Log shows:
Priority:Notice Category:Firewall Message:Match default rule, DROP Source:(remote pc ip address) Destination:Webserver_IP:80 Note:ACCESS BLOCK
In Configuration-Network-Firewall I created a rule from WAN to LAN1 Source: ANY Destination: LAN1_Subnet Service: HTTP Access: Allow
(I've also tried with Source:WAN interface IP address Destination: Webserver IP address)
In Configuration-Network-NAT I created NAT rule Type:Virtual Server Interface: WAN1 Original IP: WAN_IP Mapped IP: Webserver_IP Protocol:ANY (also tried HTTP:80)
I also tried creating a Routing rule from WAN1 to Webserver while specifying service and port as well as leaving them set to ANY.
It's like the firewall is ignoring the rule and applying the default DENY rule at the bottom.
Other threads with similar topic haven't help.
Anybody have an idea?
Thanks!
0
All Replies
-
The port 80 has been used as HTTP server on USG 100. Try to set another port in "Original Port" in NAT setting. Here is an example.0
Categories
- 8.1K All Categories
- 1.6K Nebula
- 60 Nebula Ideas
- 54 Nebula Status and Incidents
- 4.4K Security
- 224 Security Ideas
- 963 Switch
- 45 Switch Ideas
- 868 WirelessLAN
- 20 WLAN Ideas
- 5.2K Consumer Product
- 139 Service & License
- 268 News and Release
- 53 Security Advisories
- 12 Education Center
- 573 FAQ
- 273 Nebula FAQ
- 132 Security FAQ
- 73 Switch FAQ
- 72 WirelessLAN FAQ
- 7 Consumer Product FAQ
- Documents
- 34 Nebula Monthly Express
- 71 About Community
- 44 Security Highlight