Dear board,
I have a more or less complicated problem. We run a ASG 8.311 HA-Cluster. With two independent internet connections.
The main connection on eth1 supports us with several public IP addresses. Therefore we have some "Additional addresses" configured, which are used in DNAT rules, eg. traffic on port 22 to an "Additional address" is DNATed to a SFTP server in an private network. This works fine.
The second internet connection is a satellite connection, which only offers one public IP address. This connection should be used, if the main connection fails. I configured eth4 as cable modem and it receives the public IP via DHCP. The SFTP connection mentioned above should also work with the satellite link. Outgoing connections work perfectly.
Now the problem: incoming connections on port 22 are dropped by default. I assume the problem is located in the "Shell access" feature because of the port number. I tried to en- or disable the "Shell access" feature with no effect.
How can I prevent the default drop and make the ASG use the DNAT rule instead?
This thread was automatically locked due to age.
