Today we got issue like below,we are using 1500 srx
We have observed that below URL connectivity is lost since last week in QC server (192.168.149.X) ,but we are able to connect the outside server by using postman tool.
Some logs about 192.168.149.194 below
show configuration | display set | match 192.168.149.194
set security address-book global address H_192.168.149.194 192.168.149.194/32
set security nat source rule-set OCMP-to-UNTRUST rule GLDS-TO-UNTRUST match source-address 192.168.149.194/32
set security nat source rule-set OCMP-to-UNTRUST rule TIGO match source-address 192.168.149.194/32
set security nat source rule-set Port-forwarding rule DIP_src_rule match destination-address 192.168.149.194/32
set security nat source rule-set OCMP_2_TIGO_RuleSet rule DIP_49_rule-1 match source-address 192.168.149.194/32
set security nat destination pool OCMP-1921168-149-194 address 192.168.149.194/32
set security nat destination pool OCMP-1921168-149-194 address port 8380
set security nat destination pool 192_168_149_194_8780 address 192.168.149.194/32
set security nat destination pool 192_168_149_194_8780 address port 8780
set security nat destination pool OCMP_Temp_Test_SVR address 192.168.149.194/32
set security nat destination pool H_192-168-149-194 address 192.168.149.194/32
set security nat destination pool H_192-168-149-194 address port 8090
set security nat destination pool OCMP_192_168_149_194 address 192.168.149.194/32
set security nat destination rule-set Port-forwarding rule DU_TO_T then destination-nat pool 192_168_149_194_8780
set security nat destination rule-set Port-forwarding rule DU_TO_T_1 then destination-nat pool OCMP-1921168-149-194
set security nat destination rule-set Untrust-to-Trust rule DB-Venture then destination-nat pool H_192-168-149-194
set security policies from-zone OCMP to-zone untrust policy INTERNET-ACCESS match source-address H_192.168.149.194
set security policies from-zone Dedicated-Untrust to-zone Trust policy 602 match destination-address H_192.168.149.194
set security policies from-zone untrust to-zone OCMP policy UNTRUST-TO-OCMP match destination-address H_192.168.149.194
set security policies from-zone Dedicated-Untrust to-zone OCMP policy TIGO-OCMP match destination-address H_192.168.149.194
set security policies from-zone OCMP to-zone Dedicated-Untrust policy OCMP-TO-DEDICATED-UNTRUST-TIGO match source-address H_192.168.149.194
set security policies from-zone OCMP to-zone TIGO_VPN policy OCMP_TO_TIGO match source-address H_192.168.149.194
set firewall family inet filter ISP term VPN_Traffic from source-address 192.168.149.194/32
before it is worked.Please help how to troubleshoot this issue.
Thanks
Rakesh
------------------------------
Rakesh A
------------------------------