I've installed the ASG v 7.401 in a beige box in order to serve as a filter for my company.
Right now I am running a 30 day license to test the product
The configuration is as follows:
External WAN 200.***.***.157
Internal 192.168.123.100 with DHCP.
The webserver have the static IP 129.168.123.20 with the Gateway and DNS set to 192.168.123.100. This is configured as an "Internal web server" object definition.
You can see this on the files: 02 Local server IP config and 02 Network interfaces config.
I can access the web from any computer that it is protected by astaro, but we have a webserver that needs to be reachable from internet.
I've configured the DNAT rule (03 DNAT/SNAT rules) as:
Traffic selector: Any -> HTTP -> External (WAN) (Address).
Destination: Internal web server (HTTP)
The masquerading is the default one:
Internal network -> External.
I've configured a packet filter rule to allow traffic for the service (04 Packet filter config) as follows:
Any -> Internal web server ->HTTP
On the ICMP config the following options are checked:
* Firewall is ping visible
* Ping from firewall
* Traceroute from firewall
On the advanced tag the following options are checked:
* FTP
* IRC
* PPTP
I tried to access through the local network (192.168.123.20) and the web server responded.
When I tried to access it through the web either via IP or address I get a "Network timeout, the server at ***.***.***.*** is taking too long to respond".
I've tried to ping to that IP address and I get the packets back (100% packets recieved).
I've noticed that the packet filter log (05 Packet filter rule log) displays the rule #1 (allow traffic to the web server) but it seems that the server is not talking back.
Please let me know if I am missing something in this.
Thanks !!!
This thread was automatically locked due to age.
