Re: FTP service problem on SD-WAN rules
Thank you for the message.
1, When you using application in SD-WAN service rules, you need enable application-control in firewall policy as following:
config firewall policy
set utm-status enable
set application-list "g-default"
2, Then the SD-WAN service rule will check the traffic and look for the application. for the 1st occurrence of the traffic, it may use implicit rule to forward. the 2nd time, same traffic come, it will use the configured service rule. you can use the following command to check which IPs the SD-WAN has learnt for application-control.
diagnose sys virtual-wan-link internet-service-app-ctrl-list
Hope this answer can help you fix the problem,