Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
AdaCoul
Participant
Jump to solution

Unable to access WebUI after policy installation

Hi Everybody, I'm being unable to access GAIA WebUI after policy installation. We have a 3200 Appliance for our internal use (we're making tests with it). In the SmartDashbord, when I define a rule that has source or destinatination the "gateway" objet or the internal "network" objet, I'm being automatically disconnected to GAIA WebUI and I can't access it anyway. But if I define a rule which source and destination are "any", I'm able to access WebUI once again. Need assistance ! Thanks,
0 Kudos
1 Solution

Accepted Solutions
Vladimir
Champion
Champion

You are describing two network interfaces: eth1- External and eth2-Internal.

You are also stating that the laptop is connected to a Management interface.

Please list the properties of the Mgmt interface as well.

In your rulebase, specify on very top:

Source (IP or Network of your Laptop), Destination (Gateway Object) sshv2 and HTTPS, Accept, Log

Try it again.

Check the logs for drop reasons if still happening and post it here.

Cheers,

Vladimir

View solution in original post

0 Kudos
7 Replies
_Val_
Admin
Admin

Please make sure Platform Portal is properly defined on the GW object in the SmartConsole

0 Kudos
AdaCoul
Participant

Hi Val,

 

Tank you for your assistance !

Platform Portal is properly defined, I verified it

0 Kudos
Daniel_Taney
Advisor

If you edit the Gateway Properties and go to Network Management, is your topology and anti-spoofing defined correctly? (I.e. External Interfaces that lead to the Internet vs. Internal ones?) Do you see anything in your FW logs when the connection gets dropped?  

I know you said you checked the Platform Admin Web Portal settings, but did you also check the settings under "Accessibility" on that screen. You can alter the access to All Interfaces, Internal Interfaces, or According to Firewall Policy. 

R80 CCSA / CCSE
0 Kudos
AdaCoul
Participant

Hi Daniel,

All topology and anti-spoofing configs are defined correctly. eth1:192.168.2.2 leads to the Internet and eth2 : 10.10.10.1 leads to the Internal Network. Firewall is not put into the nework, my pc is connected to management interface.

"Accessibility settings are defined on "According to Firewall Policy".

0 Kudos
Vladimir
Champion
Champion

You are describing two network interfaces: eth1- External and eth2-Internal.

You are also stating that the laptop is connected to a Management interface.

Please list the properties of the Mgmt interface as well.

In your rulebase, specify on very top:

Source (IP or Network of your Laptop), Destination (Gateway Object) sshv2 and HTTPS, Accept, Log

Try it again.

Check the logs for drop reasons if still happening and post it here.

Cheers,

Vladimir

0 Kudos
AdaCoul
Participant

Hi Vladimir,

It's working now !

The firewall was blocking https and ssh connections.

 

Thanks a lot !

0 Kudos
Vladimir
Champion
Champion

You are quite wMan Happylcome.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events