Ghost traffic
Options
Hello,
I cannot access a service/port when the firewall (security policy) is enabled, but the traffic goes through when it is disabled.
However, I cannot see the traffic entry in the logs so I can whitelist it and reenable my firewall.
Kindly advise
Model: USG1100
I cannot access a service/port when the firewall (security policy) is enabled, but the traffic goes through when it is disabled.
However, I cannot see the traffic entry in the logs so I can whitelist it and reenable my firewall.
Kindly advise
Model: USG1100
0
Accepted Solution
-
Hi @nacho,The asymmetric route led to the issue.Create a policy based route on the L3 device where under the firewall to ensure the return traffic through the firewall.The issue was resolved. Thanks your time.Kevin0
All Replies
-
Hi @nacho,
Please check you don't have the rule such like Src:LAN DST:WAN ACT:Block
And kindly provide your configuration via Private Message.
I'll check and give the advice.
Thank you
0 -
Okay i will send the configuration.
Actually it is WAN to DMZ0 -
Hi @nacho,
I saw each WAN to DMZ rules have restricted destination IP.
If only specific address cannot pass , please check you have the rule for the destination addresses.
If the issue still we can have the remote session and please send your available time.
Thank you
Kevin
0 -
Hi @Zyxel_Kevin
We can do on Friday(04/11/2022) - 9am gmt+10 -
0
-
Hi @nacho,The asymmetric route led to the issue.Create a policy based route on the L3 device where under the firewall to ensure the return traffic through the firewall.The issue was resolved. Thanks your time.Kevin0
Categories
- All Categories
- 392 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 81 Nebula Status and Incidents
- 5.1K Security
- 81 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 914 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 209 Service & License
- 337 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 907 Nebula FAQ
- 415 Security FAQ
- 236 Switch FAQ
- 206 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 138 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 62 Security Highlight