Unable to open port /NAT on USG40W
Options
I have followed both of these guide to a "T" and my USG40W refuses to port forward:
https://mysupport.zyxel.com/hc/en-us/articles/360003880919--ZyWALL-USG-
How-to-open-ports-on-a-ZyWALL-USG-router-Port-Forwarding-NAT-
https://support.zyxel.eu/hc/en-us/articles/360001390934-NAT-Rule-Configuration-on-a-USG-Port-Forwarding-
I have checked and rechecked my objects and ports, but nothing seems to work in the logs I can see that traffic from expected IPs is trying to connect in because I get the following message:
There is definitely a policy at priority one that allows the appropriate service. What am i doing wrong here?
https://mysupport.zyxel.com/hc/en-us/articles/360003880919--ZyWALL-USG-
How-to-open-ports-on-a-ZyWALL-USG-router-Port-Forwarding-NAT-
https://support.zyxel.eu/hc/en-us/articles/360001390934-NAT-Rule-Configuration-on-a-USG-Port-Forwarding-
I have checked and rechecked my objects and ports, but nothing seems to work in the logs I can see that traffic from expected IPs is trying to connect in because I get the following message:
notice | Security Policy Control | Match default rule, DROP [count=22] |
There is definitely a policy at priority one that allows the appropriate service. What am i doing wrong here?
0
Accepted Solution
-
Check the port role and port you are connected too
0
All Replies
-
NAT instruct your device about how manage the packages.
Then security policy allows the traffic.
If you will publish (even masked/with data replaced) both NAT and Security policies i could analyze it and make my suggestions.0 -
In the NAT rule have you left "source IP" to any?0
-
Yes, source IP is set to any.
0 -
mMontana said:NAT instruct your device about how manage the packages.
Then security policy allows the traffic.
If you will publish (even masked/with data replaced) both NAT and Security policies i could analyze it and make my suggestions.
NAT:
Security policy:
Preview
0 -
Check the port role and port you are connected too
0 -
In config > network > interface that the device is connected to the port for Lan2
0
Categories
- All Categories
- 396 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 81 Nebula Status and Incidents
- 5.1K Security
- 86 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 915 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 211 Service & License
- 337 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 2K FAQ
- 912 Nebula FAQ
- 419 Security FAQ
- 237 Switch FAQ
- 207 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 139 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 62 Security Highlight