在防火牆設定好要對外服務主機的外部IP後。從外部網路連線時,沒問題。
但如果從內部網路去連線這個外部IP,卻是不通的。
原因就出在設定虛擬IP時,有一個欄位"介面",若沒有指定,就無法從內部做連線。
只要設定好這個虛擬IP所在的介面,就沒問題了。
Fortigate cannot directly connect to an external virtual IP internally.
After configuring the firewall to use an external IP for a specific service host, there is no issue connecting from an external network.
However, if an internal network tries to connect to this external IP, it will not work.
The reason for this lies in the configuration of the virtual IP. There is a field called "Interface" that needs to be specified. Without specifying the interface, internal connections cannot be established.
Once the interface for the virtual IP is properly configured, the issue should be resolved, and internal connections to the external IP will work correctly.
沒有留言:
張貼留言