Hello everyone!
I have 2 XG firewalls one here at the office LAN that a unifi controller is sitting on. I have 2 AP's sitting at this location on the DMZ and they are working great. I was able to discover them and attach them to the controller with Firewall rules to allow the DMZ to communicate only to the specific IP that the controller is on.
My problem is my remote location. I have a main LAN and a DMZ. Main LAN is for our corporate network and the DMZ has all of our AP's on it. After A LOT of trouble shooting I finally was able to get the AP to ping the controller and visa versa due to a missing service item in the firewall rules. My setup: (Controller on LAN <--> XG Firewall <--> internet <--> XG firewall <--> DMZ with AP's). The problem is when I SSH into the AP and run the set-inform command in the AP and point it to the controller, nothing happens.Nothing shows up in the devices screen and the network discovery tool cant find them either. Again, It can ping back and forth but cannot discover it.
The biggest conundrum is that this worked previously. Today, we just went from software on a server to a stand alone Cloud key and now its not working. We have factory reset all AP's and installed latest firmware before the inform command and after. The only difference is the IP address of the controller changed.
More info: I have ran a Diagnostic from both XG firewalls to capture packets as I do both the pings and the set-inform command and I am not getting any violations. just incoming and forward statuses.
This thread was automatically locked due to age.
