Welcome, Guest. Please login or register.
Did you miss your activation email?
Monday 23 December 2024, 07:07:21 am

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14262 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  Can't access AS400 in Orange from outside
0 Members and 0 Guests are viewing this topic. « previous next »
Pages: 1 [2]  All Go Down Print
Author Topic: Can't access AS400 in Orange from outside  (Read 38432 times)
mrkroket
Hero Member
*****
Offline Offline

Posts: 495


« Reply #15 on: Thursday 13 May 2010, 12:38:27 am »

Try to add 87.x.x.248 as an alias then...

As you said your ADSL/modem has the LAN IP (191.x.x.1), I'm supposing that is in routing mode (not in true bridging), so I imagine your modem is sending the traffic to some machine with IP in 191.x.x.? subnet (the so called Zyxell external IP).
Logged
faber1965
Full Member
***
Offline Offline

Posts: 11


« Reply #16 on: Thursday 13 May 2010, 01:48:19 am »


Yes, I checked it this afternoon, the AS400 we are testing hasn't its public IP. This confirm the results form TheDude.

Tomorrow I'll try new settings and let you know.

Thanks, Faber
Logged
faber1965
Full Member
***
Offline Offline

Posts: 11


« Reply #17 on: Friday 14 May 2010, 04:40:14 am »

OK SOLVED!

First of all I configured the AS400 with its proper Public IP 87.x.x.248

On Endian:
- Added 87.x.x.248 as alias in network interfaces
- Added new Destination NAT rule under Port Forward-NAT
  • Source: Any Uplink
  • Destination: Uplink Main/87.x.x.248
  • Allow: Without IPS
  • Protocol: Custom - TCP
  • Ports: 23 & 449
  • NAT: do NAT
  • Traslate into IP: 10.x.0.100

Source NAT: no rules
Incoming Routed Traffic: no rules
System Access: default rules
Interzone Firewall: default rules

That's all.
It didn't worked on the fly, after these updates I didn't connect yet, but in minutes everything went up and the AS400 was there.
All attempts to connect to are logged as I requested.

Then I turned back on my HTTP proxy (SQUID) for content filtering and SNORT for intrusion detection.
For future reference, I did a PrintScreen of all setup pages and a backup of working configuration.

I want to thank mrkroket for his kind help, and hope this could be useful for someone else.

Faber



Logged
Pages: 1 [2]  All Go Up Print 
« previous next »
Jump to:  

Page created in 0.078 seconds with 21 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com