A customer configured NAT Server for two internal servers in USG2200, and he can access one internal Server but can’t access the other one from outside.
This is the topology:
The test result:
Scanning ports on 105.x.y.100
105. x.y.100 is responding on port 80 (http).
105. x.y.100 is responding on port 443 (https).
Scanning ports on 105.xx.yy.101
105. x.y.101 isn't responding on port 80 (http).
105 .x.y.101 isn't responding on port 443 (https).
But from the PC in the same LAN can access the server via the private IP10.20.1.14. So it seems that this issue was caused by USG2200.
The related configuration in USG2200:
//the Nat Server is normal
nat server 16 protocol tcp global 105.x.y.100 www inside 10.20.2.14 www
nat server 17 protocol tcp global 105.x.y.100 443 inside 10.20.2.14 443
//The Nat Server is abnormal
nat server 18 protocol tcp global 105.x.y.101 www inside 10.20.1.14 www
nat server 19 protocol tcp global 105.x.y.101 443 inside 10.20.1.14 443
//The public IP
ip address 105.x.y.60 255.255.255.248
ip address 105.x.y.100 255.255.255.240 sub
ip address 105.x.y.101 255.255.255.240 sub