ROUTING
Freshman Member
Good morning,
I have an ATP200 with a vlan/dmz to which I connected a NAS that must be reached on the external IPs of the two WANs for the services on ports 80 443 and 10001, I created the NAT rules and the security policies I needed, from outside it works correctly! If I try to reach the device on one of the public addresses of the WANs connected with a PC from the lan or the vlan, it is unreachable.
Which rule should I create?
Thanks
All Replies
-
Sounds like NAT loopback? make sure its enabled for your NAT rule.
You then need a policy rule from LAN1 to DMZ
0 -
loopback is active
i create policy, but not found internal
0 -
check logs for blocked traffic
0 -
I have no blocks in the log regarding this route
0 -
Disable the firewall for a quick check.
So to be clear you go from LAN2 to the WAN IP to loopback to DS1618v IP?
0 -
Do you mean disable security policies? It doesn't work anyway...
0 -
Does your ATP get the WAN IP's not rfc1918 IP's?
0 -
My addresses are all public static
WAN2
WAN1_PPP
WAN1
port 10001 on these IPs is reachable without restrictions for testing0 -
I'm not sure why you can't loopback then sorry
You can do a packet capture on the interface DMZ as you try connecting to it by WAN IP from LAN to see if its getting to the NAS
0 -
I have enabled packet cutting for DMZ
I then tried to access the NAS from the LAN from the WAN with its two IP
But the firewall doesn't even generate log files
0
Guru Member
Categories
- All Categories
- 431 Beta Program
- 2.6K Nebula
- 164 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 360 USG FLEX H Series
- 292 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 262 Service & License
- 407 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight
