EDIT
Winner to u/technicalityNDBO who suggested looking at SSL inspection. The "application default" on Palo Alto rules will not allow SSL on ports other than 443.
Okay so I have a remote office that I have site to site VPN'ed. The site usies ubiquiti network solutions. For those of you that don't know it's more of a low tier office solution, where switches, routers and AP's are managed by a seprate single device which then syncs with the cloud.
No big deal, you hit the device via a webgui. https://10.70.7.1. I get to this page NO PROBLEM, then to launch the configuration app it goes to https://10.70.7.1:8443 I get an error connection aborted on chrome.
If I VPN to the site directly using the firewalls client, and come frmo a 10.70.0.0/16 IP. I hit it JUST fine. Disconnect the VPN doesn't work.
Strangest shit, and it's annoying me, all ports are allowed over the tunnel no problem.
No comments:
Post a Comment