Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 28 subscribers
  • Views 1134 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Access device in a vlan from wan

Denis Christov

Hello all,

 

I have a XG firewall (fw version 18), LAN and VLAN on the same physical port as LAN.

Everything works fine internally, but I am puzzled by how to make a NAT/Firewall rule to access a device in the VLAN.

I have no problem with rules for devices in the LAN, but whatever I tried, the VLAN is inaccessible for me from WAN. Does any have a sample how the rules should look like ?



This thread was automatically locked due to age.
Parents
  • 0

    Thanks guys, I am familiar with the video and I made the course. But this specific case is not covered there AFAIK.

    And of course I tried the wizard as well as the manual approach.

    As I said, DNAT to a device in a LAN network works fine. But if a device is in a VLAN, no rule I tried allowed me to access it from WAN zone...

  • 0 in reply to Denis Christov

    All my external reachable devices are located into vlans.
    Rules from wizard works...
    XG is possible to ping the VLAN-Device?
    Do you see the connection attempt within log-viewer?
    Try to capture inbound traffic from external client IP.
    Public IP is bound to external/WAN-interface or is there an ISP-Router between SG & Internet?


Reply
  • 0 in reply to Denis Christov

    All my external reachable devices are located into vlans.
    Rules from wizard works...
    XG is possible to ping the VLAN-Device?
    Do you see the connection attempt within log-viewer?
    Try to capture inbound traffic from external client IP.
    Public IP is bound to external/WAN-interface or is there an ISP-Router between SG & Internet?


Children
No Data