Hello all
I had a weird issue where a company reached out to me to open a few ports from the wan to a computer in the lan.
i created the VIP's under policies and objects and pointed each port from the wan IP to the internal private ip. i then applied the newly created VIP's to a policy going from the WAN interface to the LAN interface. i got calls saying the website was no longer accessible. i turned off the policy but the website was still unavailable. it was only after i deleted the VIP's completely from the firewall that the website was available again.
my question is why is the website access still an issue after the VIP's are removed from all policies?
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Below KB explains the behavior of VIPs.
https://community.fortinet.com/t5/FortiGate/Unused-Virtual-IP-VIP-object-can-disrupt-traffic/ta-p/18...
Toshi
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1731 | |
1098 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.