Ghost traffic
Hello,
I cannot access a service/port when the firewall (security policy) is enabled, but the traffic goes through when it is disabled.
However, I cannot see the traffic entry in the logs so I can whitelist it and reenable my firewall.
Kindly advise
Model: USG1100
I cannot access a service/port when the firewall (security policy) is enabled, but the traffic goes through when it is disabled.
However, I cannot see the traffic entry in the logs so I can whitelist it and reenable my firewall.
Kindly advise
Model: USG1100
0
Accepted Solution
-
Hi @nacho,The asymmetric route led to the issue.Create a policy based route on the L3 device where under the firewall to ensure the return traffic through the firewall.The issue was resolved. Thanks your time.Kevin0
All Replies
-
Hi @nacho,
Please check you don't have the rule such like Src:LAN DST:WAN ACT:Block
And kindly provide your configuration via Private Message.
I'll check and give the advice.
Thank you
0 -
Okay i will send the configuration.
Actually it is WAN to DMZ0 -
Hi @nacho,
I saw each WAN to DMZ rules have restricted destination IP.
If only specific address cannot pass , please check you have the rule for the destination addresses.
If the issue still we can have the remote session and please send your available time.
Thank you
Kevin
0 -
Hi @Zyxel_Kevin
We can do on Friday(04/11/2022) - 9am gmt+10 -
0
-
Hi @nacho,The asymmetric route led to the issue.Create a policy based route on the L3 device where under the firewall to ensure the return traffic through the firewall.The issue was resolved. Thanks your time.Kevin0
Categories
- All Categories
- 426 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 346 USG FLEX H Series
- 290 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 261 Service & License
- 404 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 82 Security Highlight