EFW Support
Welcome,
Guest
. Please
login
or
register
.
Did you miss your
activation email?
Thursday 14 November 2024, 04:31:50 pm
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
The Latest Endian Firewall is now available for download
HERE
14255
Posts in
4377
Topics by
6515
Members
Latest Member:
hulteends
Search:
Advanced search
EFW Support
Support
General Support
BLUE/GREEN Weirdness
0 Members and 0 Guests are viewing this topic.
« previous
next »
Pages:
[
1
]
Author
Topic: BLUE/GREEN Weirdness (Read 7684 times)
sowley
Jr. Member
Offline
Posts: 2
BLUE/GREEN Weirdness
«
on:
Wednesday 06 March 2013, 06:36:33 am »
I cannot figure this out. I have used the intra-zone control panel to poke a hole through from Blue (network 192.168.70.0/23, blue is *70.1) to Green (network 10.0.0.0/16, Green is 10.0.0.47) for a specific server (10.0.1.159), so that our wireless network can reach a dns server in Green. We have a static route set up in the 10.* network's router so that its members know to use the Green interface on Endian for the Blue network access.
To make things easy i started out allowing <ANY> through to this server. I can tracert and ping from a PC in the Green network and reach a PC in Blue, as you would expect. If I set up an SNAT that makes traffic from Blue look like the Green interface, then I can tracert or ping from the Blue PC to a Green one, but only if I do that and even then DNS is always blocked:
FORWARD:DROP UDP (br2) 192.168.71.253:62856 -> 10.0.1.159:53 (eth2)
Some other sort of traffic gets through periodically, but I do not know what this is, and it would appear that the Zone rule is being applied in this case:
ZONEFW:ACCEPT:6:l3 UDP (br2) 192.168.71.253:137 -> 10.0.1.159:137 (br0)
I also see this once in a while:
INPUTFW:DROP UDP (br0) 10.0.1.159:67 -> 255.255.255.255:68
So, what am I doing wrong? If I can just get Blue to talk to a few servers in Green I am all set.
Many Thanks!
Logged
sowley
Jr. Member
Offline
Posts: 2
Re: BLUE/GREEN Weirdness
«
Reply #1 on:
Wednesday 06 March 2013, 08:54:08 am »
Fixed it! Thanks!
S.
Logged
Pages:
[
1
]
« previous
next »
Jump to:
Please select a destination:
-----------------------------
Announcements
-----------------------------
=> Project News
=> Latest News and Updates
-----------------------------
Support
-----------------------------
=> General Support
=> Installation Support
=> EFW SMTP, HTTP, SIP, FTP Proxy Support
=> VPN Support
=> Hardware Support
-----------------------------
Development
-----------------------------
=> EFW Wishlist
=> Contribute Your Customisations & Modifications
Page created in 0.047 seconds with 19 queries.
Powered by SMF 1.1 RC2
|
SMF © 2001-2005, Lewis Media
Design by
7dana.com