Hi @ArtemTokarenko ,
Thank you for the detailed information and screen shots. They are very helpful.
Your pings demonstrate that L2 connectivity is good.
- The 1st thing you can do is delete static routes 10 and 20. They are not needed. If you look at More Runtime Stats to the right of your virtual router config, you will see those routes already exist as (A)ctive and (C)onnected. Simply put, the NGFW knows how to route between connected subnets. (You can also delete your disabled NAT rules. They are not needed.)
- The 2nd thing you need to do is verify the traffic is going through your NGFW under Monitor > Logs > Traffic. Once you find the traffic logs, you can examine them to see if the NGFW is forwarding the traffic correctly.
- If the NGFW is forwarding traffic correctly, then it is another issue (Windows firewall, etc.).
- If you do not see the traffic logs, you should enable logging for your default rules by highlighting each rule, selecting Override, and enabling logging. Then traffic that hits those rules will also show in the logs. For example, traffic dropped by the NGFW will hit the interzone-default rule.
Thanks,
Tom
Help the community: Like helpful comments and mark solutions.
