I cannot Ping My public IP outside network
All Replies
-
Is ICMP allowed by rules?Is your device allowed to answer ICMP?0
-
Hi @rogerIT.
Greeting Forum, Device has the following hidden default firewall rules:
"LAN to WAN is allowed, WAN to LAN is blocked".
Please kindly create the rule allow WAN ICMP.
Thanks
Kevin0 -
Hi @Zyxel_Kevin and @mMontana
Good Day!
Can you send me a Screenshot of the settings?
this is my current setting https://prnt.sc/rHXEYPzNiimI
thank you
0 -
0
-
I'd change the destination from "any" to "Zywall", if possible.
0 -
Hi @mMontana and @Zyxel_Kevin
It works now!!
I saw this on internet, this may also help some user
https://prnt.sc/@Zyxel_Kevin
Thanks Guys
0 -
I do not use Nebula, so maybe my suggestion was incorrect.Into 4.x firmwares, destination "Zywall" is one of the options, brecause "Any" will automatically exclude the Zyxel devices.IDK if in Nebula there's something similar.Moreover...In the default configuration for the USG devices (4.x and 5.x firmware) there's a specific rule for defining what's allowed from wan to firewall and what's not.ICMP/PING is not part of this rule. You can find something similar into your nebula config, then add the PING object to services group for allowing connection to firewall.Remember: more rules, more refined control.Less rules, faster operationsBe smart and sometimes optimize (rethink) the rules is a good idea.
0 -
@Zyxel_Kevin
no offense pls, but I am a bit worry about that.
Can you explain what are the best thing to do instead0
Guru Member
Zyxel Employee
Categories
- All Categories
- 431 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 359 USG FLEX H Series
- 292 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 262 Service & License
- 407 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight
