|
Title: Internal pc's cannot access webserver behind EFC v2.5.1 - SOLVED! Post by: jr3151006 on Saturday 09 March 2013, 12:39:39 am Hi,
external users can access fine the webserver hosted behind Endian; but internal users not. The firewall redirection rule already is 'able'/set up to receive packets from 'MAIN LINK' and 'GREEN LINK' also but is not working. >>>> Should I create another rule/policy? Both server and workstations are on the same subnet (192.168.0.x/24). To accomplish the access for internal users, I´m modifying the C:\WINDOWS\SYSTEM32\DRIVERS\ETC\HOST file, but for each new user/visitor using our connection that is a dilema. Title: Re: Internal pc's cannot access webserver behind EFC v2.5.1 Post by: Danoh on Saturday 09 March 2013, 12:54:24 am So a host on GREEN can't access the webserver on RED using the RED ip address?
If that's the case, you need a little NAT "loopback" Add a source NAT rule: Source Network/IP: 192.168.0.0/24 Destination Zone/VPN/Uplink: GREEN + Interface X (Zone: GREEN) Service/Port: Any/Any NAT: NAT To Source address: Uplink Main - Auto Title: Re: Internal pc's cannot access webserver behind EFC v2.5.1 Post by: jr3151006 on Saturday 09 March 2013, 01:00:21 am Hi Dano,
I found some advice and worked fine. The "secret" is create a NAT rule able to receive that packet/connection from RED and GREEN and also create a 'Source NAT' to enable/allow the internal network come back to 'GREEN'. http : // www . efwsupport . com / index . php ? action=dlattach;topic=2945.0;attach=363;image http : // www . efwsupport . com / index . php ? action=dlattach;topic=2945.0;attach=365;image * Full toppic: http : // www . efwsupport . com / index . php?topic=2945.0 |