AnsweredAssumed Answered

Legacy Remote access solution with R80.10

Question asked by Blason R on Jan 7, 2019
Latest reply on Jan 7, 2019 by Vladimir Yakovlev

Hi Guys,

 

Again converting legacy policies to R80.10; here is one more issue would like to discuss. Previously I had legacy user access Remote Access VPN Solution [EPM].

Then edited the policy and ticked the Application Blade.

When tried installing policy it threw an error about legacy user access group which was used for Remote VPN. Hence I created access role and added those groups in the rule.

 

Now policy installation was successful and even users were getting connected however one issue I faced was even though ports were allowed in the same rule. Traffic was dropping for Office mode client IPs to destination IPs which were present in the rule and it was dropping at the clean up rule.

 

Any clue why? Then I again reverted the changes and it started working fine.

 

Like

 

Rule#56

Source - RDPusers@Any

Dest - RDP_10.10.10.10

Service - TCP_3389

Action - Accept

 

Rule#80

Any
Any

Drop

 

So traffic was dropping at Rule#80 when Rule#56 was converted to

Source - Access_Role_RDPUsers

Dest - RDP_10.10.10.10

Service - TCP_3389

Action - Accept

Outcomes