Hi!
I'm trying to figure out why XG installation refuses LAN clients to make RDP or SSH connection to WAN servers.
Whenever I try such a connection, the packet sniffer first logs a correct connection request (dest. port 3389, for example) originating from the LAN address of my client. Then it gets forwarded to my WAN adapter in order to reach the server. But then, an ICMP request from the RDP server to the client (to its LAN IP!) flows in and XG blocks this.
The IPS log also show a dropped packet (signature 441; "ICMP Destination unreachable prohibited") and my clients fails with a common "host unreachable" error.
When looking at the policy which is used in that case, I'm just using the "#Default_Network_Policy" without any special settings.
Regular HTTP(S)/FTP connections and even POP3/IMAP/SMTP is working fine with the same policy.
Is there something I'm missing?
This thread was automatically locked due to age.
