Dear Forum
I get nuts with my problem. Maybe you can give me some hints.
We use a SRX 340 (15.1X49-D120.3)
There are the Internal Security Zone (irb.10) and the Wlan Security Zone (irb.20).
From Wlan Security Zone we want access just one Server in Internal Security Zone.
I created a Policy to allow that traffic.
I had in mind I must also allow Host-Inbound on Internal Zone (I set it to all) and not NAT the traffic.
The problem is that I cant access that host (Even not ping the host).
Config you'll find in the attachment.
Many thanks for your help!
Rocksteady