I can't go trough it.
I need access from my internal network to a server with public IP.
I have private network with few VLANs, and then I'm using Watchguard m400 firewall. The server, that I want to reach has only public IP.
I can ping it from my private network but nothing else. I have oppened required ports (20, 21, 22, 80 in my case), was trying to add SNAT, but I think, that SNAT is working with opposed case (accessing from public network a private server).
Any hints?
Best regards
Best Answer
If you have standard outgoing policies configured that allow ssh, http, ftp, ftps etc. from interal LAN, then you don't need to create a new rule for a specific external host ip address. You also need not to create a new SNAT rule for it.
From your description, it seems the target host may got listed in Watchguard's block lists due to it's Default Packet Handling Options.
Check your firewall's Auto-Blocked Sites/Temporary Blocked Sites List and remove it, if it is listed. Alternatively Manage the Blocked Sites List (Blocked Sites).
You can also try to disable packet handling temporarily to see if it works.