Comments
-
We do have the auto-generated firewall policy rules for both the sslvpn and ike vpn. Both allowing from the respective vpn users to Any port Any. Differing slightly in the nat precedence checkboxes (IIRC sslvpn did not work when 1-to-1 nat precedence was ticked)
-
To clarify, Watchguard EPDR Discovery only needs access from a PC on the vpn (or LAN/other secure zone) to other PCs on the vpn (broadcast capability). Firewall Policies are probably not the issue here. And it works to ping/discover inside the WG Mobile SSLVPN. But the WG Mobile IKE vpn works quite differently. We cannot…