Running latest build of 7.2 on a 200E Have a web server in the DMZ that
needs to communicate with an internal LAN box solely for https traffic I
have several boxes in similar config, none with issues. This is perhaps
the first new rule I've had to ma...
Yes, my policy is allowing a server in the DMZ to access a server on the
LAN. We have multiple policies doing the same thing, this is the only
one that isn't working. The DMZ has no direct access to the LAN, so
there has to be an address translation....
if there's a better way to set it up i'm all ears, i am not a fortigate
expert by any means, our ISP set most of this up and we've just followed
the blueprint they created over the years
And just to re-iterate - the problem when this policy is enabled is the
destination server loses its ability to get to the internet, which
should have NOTHING to do with this policy
Thanks - here's more info - believe the order of these snips is the
address object for the source, then the destination, and finally the
firewall policy, all from the gui SOURCEDESTINATIONPOLICY
