Papa_DIOP

You're right, Melen. I did not set policies for another network than the one concerned by the Service Provider on WAN2 since, I expected the security policy to be enough to allow traffic on WAN1. My fault, sorry. It would have been so good to have a "show IP route" tag on the Nebula Firewall status menu, though… Many…

in How to customize the Nebula default security policy ? Comment by Papa_DIOP August 6

Thank you, Peter. 10.2.0.0/16 is the Service Provider Network on WAN2 The VPN is established within the 192.168.110.0 subnet which should be the only network granted access to this Service Provider.

in How to customize the Nebula default security policy ? Comment by Papa_DIOP August 6

Thank you, Melen. Here's what I got in my routing policies: And, here's what i got on Security policies:

in How to customize the Nebula default security policy ? Comment by Papa_DIOP August 6

Thank you, Peter. Relevant traffic is effectively routed through WAN2. That is not the problem. Because of the default implicit rules in the security policy, Internet traffic is load-balanced between the two WANs, which creates instabilities over all networks. If those implicit rules were editable, I would just allow the…

in How to customize the Nebula default security policy ? Comment by Papa_DIOP August 6

Thanks but, that does not prevent the traffic to go through both WANs because of the default security policy that is un-editable and allows it by default. I have setup a policy-route to redirect each interface to the desired WAN. However, the security-policy takes over. Isn'it just possible to make the default security…

in How to customize the Nebula default security policy ? Comment by Papa_DIOP August 5

Thank you, Kay. You did help to retrieve the registered device. Thank you very much.

in Device already registered but not in my list of registered devices Comment by Papa_DIOP August 1

What, if one wants to customize/edit that default security policy ?

in [2024 May Tips & Tricks] Get a grip on the security policy of the Nebula firewall Comment by Papa_DIOP July 29

Thank you, Kay. The device does not appear on my list, still. Please advise on which email adrs I should send a private message.

in Device already registered but not in my list of registered devices Comment by Papa_DIOP July 28

SAML Integration would be awesome !…

in Nebula Cloud - Authentication - SSO with Azure AD (AAD) or SAML Comment by Papa_DIOP March 7

Thanks, Ives. It's about the Management VLAN DHCP only which seems limited, whereby Network Equipments are supposed to fetch a Management IP addr. All other VLANs have DHCP running fine.

in Why is NSG100 LAN1 DHCP limited to 32 IP addr ??? Comment by Papa_DIOP September 2021

Herewith Event logs... On both sides.

in [NEBULA] NSG Site-to-Site VPN port forwarding Comment by Papa_DIOP August 2019

Herewith what's configured... On both sides.

in [NEBULA] NSG Site-to-Site VPN port forwarding Comment by Papa_DIOP August 2019

Hello, I am experiencing the same problem, although I have enabled port forwarding 4500/500 on my ISP modem/router. The VPN doesn't come up at all. Event logs shows this : 2019-08-01 15:47:21vpn192.168.253.50192.168.254.102 Send:[SA][VID][VID][VID][VID][VID][VID][VID][VID][VID][VID] 2019-08-01…

in [NEBULA] NSG Site-to-Site VPN port forwarding Comment by Papa_DIOP August 2019

I also have the same problem. The switch shows off-line !!!

in [NEBULA] NSW100-10P not showing online on the Portal Comment by Papa_DIOP March 2019

Papa_DIOP Freshman Member

Comments