Hi Todd

I do not think this is the case: I allowed a subnet /24 to the targets and connect from an IP within that range.

Besides, I've also tried to connect with the IP restrictions removed from the new target IP.

I would love to try further, but my certificate had expired and I've just created a new one using the Time settings on the console, but the certificate is still invalid and no browser allows me to proceed.
I guess I need to reboot the DSS first?