also have a problem with dst nat to 443, do you fix it?
destination {
pool dst-nat-site-ssl {
address 10.1.1.241/32 port 443;
}
}
zones {
security-zone trust {
address-book {
address site-ssl 10.1.1.241/32;
}
}
rule r6 {
match {
destination-address pub_ip_addr/32;
destination-port 443;
}
then {
destination-nat {
pool {
dst-nat-site-ssl;
}
}
}
}
from-zone untrust to-zone trust {
policy server-access {
match {
source-address any;
destination-address [site-ssl ];
application any;
}
then {
permit;
}
}
}