Marco Pagnotelli
Hello everyone,
I have a Zyxel USG60 that needs to connect clients to an external https server (cloud). The server gives me a timeout error. doing the same without firewall I have no errors. I would like to know how I can open a channel to the server's IP address for port 443, maintaining the current firewall rules. Thank you
Accepted Solution
-
You most likely need to create an extra WAN-to-LAN Firewall Policy Rule to allow incoming traffic from the external https server. Not sure if reverse rule is needed, since it should be safe to assume that LAN clients do not have restrictions on internet access (please verify, just in case).
The WAN-to-LAN policy rule can be restricted to single address source, but make sure you know whether there are any other required protocols other than 443/SSL. Target can be subnet (LAN).
2
Master Member
All Replies
-
You most likely need to create an extra WAN-to-LAN Firewall Policy Rule to allow incoming traffic from the external https server. Not sure if reverse rule is needed, since it should be safe to assume that LAN clients do not have restrictions on internet access (please verify, just in case).
The WAN-to-LAN policy rule can be restricted to single address source, but make sure you know whether there are any other required protocols other than 443/SSL. Target can be subnet (LAN).
2 -
Thanks a lot! I'll try to do this.
0
Categories
- All Categories
- 431 Beta Program
- 2.6K Nebula
- 168 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 368 USG FLEX H Series
- 294 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.7K Consumer Product
- 265 Service & License
- 409 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight
