hello dear and thnx for reply

the Vritual server setting is standered one and for protocol i had put Protocol is all traffic permited

Hi

So i think, You can select internal vlan on option VLAN and Tunnel Traffic within virtual server for allow just vlan internal go to outside and all traffic cannot hit this virtual server

 https://cloud-ttrust.com/ 

Hello dear

i am made it as show but still no access to internal server from outside and also i lost the web service for virtaul server but the ping is avabile on it and also take in mind any server in vlan 21 and out of virtaul server is also not able to ping them ( which they are not in vrirtual server)

Which service port and protocol type on virtual server ?, You have to set all for allow all traffic

as show in screenshoot it's all ports and all service but also there is somthing wrong the servers that are out of vritual server is also unreachable from outside

I would like to confirm the objective, Do you want to allow network from inside to outside destination 100.68.0.125 ?

i want from outside to inside , let me explain more detials
i had setup vlan 21 (gateway IP)  which is contain many VMs

100.66.0.3
100.66.04
100.66.0.5

0.3 and 0.4 are in virtual sever . 0.5 is out of it . from the 0.3 , 0.4 and 0.5 to outside it's working fine and reach everthing but from outside to them it's not reachable (using their real ip)

What sever IP in inside that you want to access from outside