Welcome, Guest. Please login or register.
Did you miss your activation email?
Monday 18 November 2024, 02:41:38 pm

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14258 Posts in 4377 Topics by 6515 Members
Latest Member: hulteends
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  Can't access AS400 in Orange from outside
0 Members and 3 Guests are viewing this topic. « previous next »
Pages: 1 [2]  All Go Down Print
Author Topic: Can't access AS400 in Orange from outside  (Read 36176 times)
mrkroket
Hero Member
*****
Offline Offline

Posts: 495


« Reply #15 on: Thursday 13 May 2010, 12:38:27 am »

Try to add 87.x.x.248 as an alias then...

As you said your ADSL/modem has the LAN IP (191.x.x.1), I'm supposing that is in routing mode (not in true bridging), so I imagine your modem is sending the traffic to some machine with IP in 191.x.x.? subnet (the so called Zyxell external IP).
Logged
faber1965
Full Member
***
Offline Offline

Posts: 11


« Reply #16 on: Thursday 13 May 2010, 01:48:19 am »


Yes, I checked it this afternoon, the AS400 we are testing hasn't its public IP. This confirm the results form TheDude.

Tomorrow I'll try new settings and let you know.

Thanks, Faber
Logged
faber1965
Full Member
***
Offline Offline

Posts: 11


« Reply #17 on: Friday 14 May 2010, 04:40:14 am »

OK SOLVED!

First of all I configured the AS400 with its proper Public IP 87.x.x.248

On Endian:
- Added 87.x.x.248 as alias in network interfaces
- Added new Destination NAT rule under Port Forward-NAT
  • Source: Any Uplink
  • Destination: Uplink Main/87.x.x.248
  • Allow: Without IPS
  • Protocol: Custom - TCP
  • Ports: 23 & 449
  • NAT: do NAT
  • Traslate into IP: 10.x.0.100

Source NAT: no rules
Incoming Routed Traffic: no rules
System Access: default rules
Interzone Firewall: default rules

That's all.
It didn't worked on the fly, after these updates I didn't connect yet, but in minutes everything went up and the AS400 was there.
All attempts to connect to are logged as I requested.

Then I turned back on my HTTP proxy (SQUID) for content filtering and SNORT for intrusion detection.
For future reference, I did a PrintScreen of all setup pages and a backup of working configuration.

I want to thank mrkroket for his kind help, and hope this could be useful for someone else.

Faber



Logged
Pages: 1 [2]  All Go Up Print 
« previous next »
Jump to:  

Page created in 0.063 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com