Problem Description:
New setup, if I remove the firewall, everything works.
PC behind a firewall is able to access websites CNN, youtube, google, etc. However, for speedtest type sites, remote access to NAS, and accessibility to IoT (camera, doorbell) items, it fails.
For Speedtest sites, tried three different, they all say latency or firewall blocking (again, if i remove PA220, it works without any issues)
IoT devices, all devices appear to be offline
remote access to NAS, it just can't connect
​
Items
ISP NVG468MQ cable/modem (DHCP 192.168.254.x)
PA220 version 8.1.6 (providing vlan IP for trusted L2 devices (PC and NAS) in the 192.168.1.x)
PC and Synology NAS device
Used this link to deploy PA 220 ( https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFkCAK )
​
Topology
ISP Modem ---->; (Eth1/1) PA220
PA220 (Eth 1/2) <---->; PC
PA220 (Eth 1/3) <---> NAS
​
Checklist
PC behind PA220, am able to browse the Internet
NAT, just have 1; source TrustL3, dest UnTrustL3, des interface 1/1, ANy for source and dest add, ANY for service, Source Translation is dynamic IP and Port with Eth1/1, no destination translation
No comments:
Post a Comment