Policy problem on ns5XP



  • I am having trouble figuring out what is blocking me from access the internet.  I have a policy from Trust to Untrust “set policy id 5 from “Trust” to “Untrust”  “Any” “Any” “ANY” permit log”.  Whenever I have this policy turned on I am unable to browse the internet but I am able to access my NS5XP via MIP from the public internet.  If I disable this policy I am able to browse the internet but NOT able to access the NS5XP via a MIP from the public internet.

    Any help would be appreciated



  • Thank you very much for the reply.  I will give this a try and let you know if it fixes my issue.

    Have a nice day.



  • Try enabling source nat on your policy.

    example:
    set policy id 5 from “Trust” to “Untrust”  “Any” “Any” “ANY” nat src permit log


 

28
Online

38.4k
Users

12.7k
Topics

44.5k
Posts