Welcome, Guest. Please login or register.
Did you miss your activation email?
Sunday 01 December 2024, 03:06:33 am

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14261 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  backoffice problem
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: backoffice problem  (Read 15343 times)
Esquire
Full Member
***
Offline Offline

Posts: 19


« on: Thursday 29 March 2012, 08:51:54 pm »

As you can see on the diagram i can ping the back office. But Backoffice cannot ping the mainoffice. But all ports is open backoffice can reach my mainoffice. Is there anyway to open icmp packets?


Logged
fqureshi
Sr. Member
****
Offline Offline

Posts: 126


« Reply #1 on: Saturday 31 March 2012, 07:40:57 am »

Can you please elaborate which host IP you are trying to ping and from which source host?
Logged
Esquire
Full Member
***
Offline Offline

Posts: 19


« Reply #2 on: Saturday 31 March 2012, 08:51:31 am »

For example 10.45.1.5 my backoffice fileserver and the other backoffice client pc's cannot ping my main server which is ip address 192.168.5.2 and also mainoffice client pc's. But all protocol is working normally. They can reach my server rdp ports telnet smtp pop3 etc.
Logged
fqureshi
Sr. Member
****
Offline Offline

Posts: 126


« Reply #3 on: Saturday 31 March 2012, 09:14:46 am »

If there is a router in between and if you have routing enabled on it then your traffic won't passed to endian until a request for external network. I m confused as i can see you have a router between back office and main office? ??
Logged
Esquire
Full Member
***
Offline Offline

Posts: 19


« Reply #4 on: Saturday 31 March 2012, 08:34:09 pm »

Endian passed the traffic there is no problem. My ip rule as below. My problem is i cannot ping from the external net to the Green A network...

root@endian:~ # ip rule
0:      from all lookup local
10:     from all fwmark 0x10/0x7f8 lookup gateway-192.168.5.10
10:     from all to 10.45.1.0/24 lookup gateway-192.168.5.10
199:    from all fwmark 0x8/0x7f8 lookup uplink-main
200:    from 200.150.10.2 lookup uplink-main
32766:  from all lookup main
32767:  from all lookup default
root@endian:~ #
Logged
fqureshi
Sr. Member
****
Offline Offline

Posts: 126


« Reply #5 on: Sunday 01 April 2012, 09:33:19 am »

First create system access i.e firewall , that are you able to acess and ping endian firewall or not. From external and internal sources..
Logged
Esquire
Full Member
***
Offline Offline

Posts: 19


« Reply #6 on: Monday 02 April 2012, 08:01:29 pm »

internal ping ok. system access rules looks good. But im unable to ping from the external net Huh
Logged
Esquire
Full Member
***
Offline Offline

Posts: 19


« Reply #7 on: Friday 06 April 2012, 09:10:25 pm »

Guys, i found the solution. The problem is on the iptables FORWARD chains. Just delete the rule number 7 and voila its just worked.

iptables -D FORWARD 7
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.102 seconds with 18 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com