Port forwarding not working

Hi @Axeraf68

Since your USG FLEX 50H is positioned behind a FritzBox 7530AX (indicated by the private WAN IP 192.168.10.1), you are in a "Double NAT" scenario. This means traffic must be forwarded by the FritzBox first before it can reach the Zyxel firewall.

Please check the following technical points to resolve the connection:

1. FritzBox Port Forwarding:
   Ensure the FritzBox has a port forwarding rule (or "Port Sharing") for TCP port 3389 (RDP) pointing to the WAN IP of the USG (192.168.10.1). Alternatively, you can set the USG as an "Exposed Host" in the FritzBox settings to forward all traffic.
2. Virtual Server NAT Rule:
   On your USG FLEX 50H, go to Network > NAT and verify the Virtual Server rule:
   1. Incoming Interface: ge1
   2. External IP: 192.168.10.1
   3. Internal IP: [Your target PC's IP, e.g., 192.168.1.x]
   4. Port Mapping: TCP 3389 (External) to TCP 3389 (Internal).
3. Security Policy:
   Go to Security Policy > Policy Control and ensure there is an "Allow" rule:
   1. From: WAN
   2. To: LAN (or the specific zone where your PC resides)
   3. Destination: [Address Object of your internal PC]
   4. Service: RDP (TCP 3389)
   5. Service Port Conflict: Ensure the USG's own management ports (like HTTPS 443) do not conflict with your RDP setup, though RDP (3389) is typically unique.

Hope this helps.