Problem port forwarding on USG 100-Match default rule, DROP-ACCESS BLOCK
Options
Hi,
Hopefully someone can help me.
I'm trying to port forwarding port 80 to a web server but the firewall is blocking it. I've done this many times before successfully but I'm having an issue this time...
Log shows:
Priority:Notice Category:Firewall Message:Match default rule, DROP Source:(remote pc ip address) Destination:Webserver_IP:80 Note:ACCESS BLOCK
In Configuration-Network-Firewall I created a rule from WAN to LAN1 Source: ANY Destination: LAN1_Subnet Service: HTTP Access: Allow
(I've also tried with Source:WAN interface IP address Destination: Webserver IP address)
In Configuration-Network-NAT I created NAT rule Type:Virtual Server Interface: WAN1 Original IP: WAN_IP Mapped IP: Webserver_IP Protocol:ANY (also tried HTTP:80)
I also tried creating a Routing rule from WAN1 to Webserver while specifying service and port as well as leaving them set to ANY.
It's like the firewall is ignoring the rule and applying the default DENY rule at the bottom.
Other threads with similar topic haven't help.
Anybody have an idea?
Thanks!
0
All Replies
-
The port 80 has been used as HTTP server on USG 100. Try to set another port in "Original Port" in NAT setting. Here is an example.0
Master Member
Categories
- All Categories
- 383 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 75 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 209 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 890 Nebula FAQ
- 415 Security FAQ
- 233 Switch FAQ
- 203 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 62 Security Highlight
