Hi there,
im struggling with a really strange issue. Maybe im also not aware how this works exactly and only need an meaningful explanation.
Ive nothing so far in the KB neither on other web sites.
Situation:
- Remote Access VPN Ipsec configured, which works fine in general. Ipsec connection is stable
- added firewall rule to allow Zone VPN -> LAN/WAN (Any/Any for testing)
I did not care about the Security Features/Web filtering in the past as it states ("this feature requires a subscription"). I'm only using the "Basic license", no other subscriptions activated.
The default setting in the firewall is that "Web Policy" is set to 'None', which was always fine for me. No problems with other firewall models (XG 2100, virtual Appliance).
No with the XGS 136 this does not work as "expected", or at least as before.
Also this only appears when using Remote Access Ipsec VPN.
When using L2TP, either with Policy set to 'Allow All' or to the default 'None', there are not issues
When Web Policy is set to None, connections to LAN struggle on different websites i try to load. Mostly its hanging when the target website (like Switch Web GUIs, ESxi Host website) tries to load additonal resources (big javascript files, node modules, such things that might be considered "harmful" for a web policy?).
Ive tried this with v18, v19 and the latest firmware images. This issue is reproducible and only exists on this specific XGS 136 model.
Its working only when Web Policy is set to 'Allow All' (i did not try the other variants like 'Allow only specific things'; but you should get the point here)
- Why do i need to set the Web Policy to 'Allow All' only on XGS 136, even when there is no active subscription?
- Why does it work with other firewall models even with Policy set to 'None' (no subscriptions aswell)?
- Why does this only behave like that with Remote Access VPN and not with L2TP?
Kind Regards
This thread was automatically locked due to age.
