Comments
-
Also, if I ping one of the devices on the control network, I get this. Not a timeout, but "unreachable".
-
Thanks for the quick reply. OPT is set to internal and zone OPT. LAN1 is set to internal and zone LAN1 (that's fixed, I guess) "Use IPv4 Policy Route to Overwrite Direct Route" is NOT checked.
-
@PeterUK Hi, Peter. So this seemed to work at the time, but having made some changes in various places, seems to not work now! I've even restored the config to a previous version and still no luck. Very frustrated! Just to clarify the current objective: Using a USG40. (I have moved from DMZ to OPT port for the control…
-
Many thanks, Peter. Worked like a charm. Created the group of control devices, added the policy rule, and added a route on my desktop PC, and voila! Connected!
-
Thanks for the reply! Since many office PCs will want to access three control network devices, is there an easy way to open access from all office PCs to three individual control devices, without allowing broadcast traffic? What if I had three rules allowing "from any" on LAN1 to a specific IP on DMZ? Is that safe to do?…
-
I did a factory reset and uploaded the config through the web interface. I just thought the console might provide an easier way to restore. Thanks for the help.
-
Thanks, Mark. That's what I found also fixed the problem. I appreciate the confirmation. Cheers.
-
Found part of my problem. BitDefender antivirus must have recently added another layer of protection, and is preventing connections to secure sites with untrusted certificates. From the day I bought the USG40, it has always presented me with warning that it was not a secure site, and I clicked 'advanced', and connected…
-
In case this is helpful, here's the secure server status info: Router(config)# show ip http server secure statusactive : yesport : 443certificate : defaultforce redirect : yesauthentication client: nostrong cipher suite : yescipher suite : aes 3des des rc4ssl protocol : tls1.2admin service control:No. Zone Address…
-
Hi, lan31. Thanks for the help. All commands are accepted, but the first one responds with: Router(config)# ip http secure-server strong-cipher % This command will only activate strong cipher suites. After competing, and rebooting the USG40, I still can't connect. Incidentally, I downloaded an old version of Firefox, and…
-
Ah... there it is! Thank you, Charlie!