Hi,
coming from SG, I am trying to find the best way to publish applications in XG.
So far, I have always preferred to publish my ssl-VPN and user portal using the standard port 443. Reason being that this port is most likely to be open in any internet connections users might be trying to connect from. I did so on Port C.
In order to be able to publish Exchange OWA and other applications I obviously need a second IP, and I have one. I added an alias interface (in my case Port C:0) with my second IP and using 32bit netmask, as I always do on my SGs.
Trying to add my WAF rule to this alias interface, I get the message that 443 is already active on this interface. Obviously, the two are not separated as much as I thought they are, and as much as SG separates them.
My question is this:
- is there anything wrong with my way of publishing SSL-VPN and user portal?
- can I somehow bind these services to the "root"-Interface only?
- what is the recommended way to proceed in my scenario?
Thanks,
Ralph
This thread was automatically locked due to age.
