Comments
-
I connect to the lan with an openvpn server. It connects to the same subnet as the router's management interface. This server connects to a switch, not directly to the router.
-
My othe subnet is not bound to an interface. My access rule: source: zone: any address: my address port: any Destination: zone: any address: any port: any At the optional settings, I allowed management traffic for that rule. You referred that option? But I still cannot access the management interface (ping works).
-
Thanks. I tried it out. When I try to connect to the firewall from outside, nothing appears about it in the log. If I ping it, I see log entries about it (but why it thinks it is a 'land attack'?). I see log entries about my traceroute. But nothing about my try to connect to its management interface.
-
Thanks Markd. Which template should I import? Are you trying to access the WAN management from internally by chance? No. When I check the management interface port from outside, it is closed.
-
Thanks. I found a drop: DROPPED, Drop Code: 742(Packet dropped - Policy drop), Module Id: 27(policy), (Ref.Id: _2776_qpmjdzDifdl) 3:3) How can I find, which exact rule dropped the packet?
-
Thanks.
-
Great. :)
-
Thanks for your answer. How can I create firewall rules, when I create tunnel interface? At routing rules, I can choose the tunnel interface for next hop, but at access rules, I cannot, and cannot include that tunnel interface into a zone. Sorry if this is a dumb question.