Flex 200 and web server problems
I have a new Flex 200 and one web server behind it. I built my NAT (virtual server) and my security policy and it's still getting dropped when the traffic comes in.
At first, I thought it was because the device was on 443 for management so I reconfigured the device to use 8443 and that's working fine, but still, I can't get my web server (or my RRA) accessible from the outside.
Here's what I did:
I created an object for my external IP as a host.
I created an object for my internal IP as a host.
I created the NAT policies and the sec policy and applied them.
In the log, I'm seeing the traffic dropped with the message below:
Match default rule, DNAT Packet, DROP
i'm struggling on this one. Thanks
Accepted Solution
-
Hi @CRP0499 ,
Greeting Form, From your statements it sould like you are missing a security policy.
Please kindly check if you have the rule like this and the higher priority:
(Please check the address is the real web IP, it may private IP)
If the issue still persist, please provide the config file by private message.
Thank you
0
Zyxel EmployeeAll Replies
-
That was it! Missing a WAN to LAN policy.
1
Categories
- All Categories
- 164 Beta Program
- 1.7K Nebula
- 86 Nebula Ideas
- 62 Nebula Status and Incidents
- 4.7K Security
- 236 Security Ideas
- 1.1K Switch
- 50 Switch Ideas
- 907 WirelessLAN
- 27 WLAN Ideas
- 5.3K Consumer Product
- 172 Service & License
- 294 News and Release
- 65 Security Advisories
- 14 Education Center
- 911 FAQ
- 399 Nebula FAQ
- 249 Security FAQ
- 90 Switch FAQ
- 100 WirelessLAN FAQ
- 18 Consumer Product FAQ
- 55 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 68 About Community
- 51 Security Highlight
