Welcome, Guest. Please login or register.
Did you miss your activation email?
Tuesday 19 November 2024, 03:19:40 am

Login with username, password and session length

Download the latest community FREE version  HERE
14258 Posts in 4377 Topics by 6515 Members
Latest Member: hulteends
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  EFW SMTP, HTTP, SIP, FTP Proxy Support
| | |-+  cannot access blue from green.
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: cannot access blue from green.  (Read 11802 times)
alexroi17
Jr. Member
*
Offline Offline

Posts: 2


« on: Thursday 21 January 2010, 06:50:40 am »

Just installed EFW 2.3 and cannot access blue from green.

My setup:
----------------
green = eth0 = 192.168.0.1
blue = eth1 = 192.168.1.1
orange = eth2 = 192.168.2.1
red = eth3 = dhcp

Inter-zone firewall rule GREEN BLUE <ANY> ->  is installed by default.

Computer A gets ip = 192.168.0.10 DNS 192.168.0.1 Gateway 192.168.0.1 from DHCP on green

Code:
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
             0.0.0.0          0.0.0.0      192.168.0.1  192.168.0.10     10
         192.168.0.0    255.255.255.0         On-link   192.168.0.10    266
        192.168.0.10  255.255.255.255         On-link   192.168.0.10    266
       192.168.0.255  255.255.255.255         On-link   192.168.0.10    266
===========================================================================
Persistent Routes:
  None

Computer B gets ip = 192.168.1.10 DNS 192.168.1.1 Gateway 192.168.1.1 from DHCP on blue

If I can ping both green and blue ips of efw box, but not anything else on blue.
Code:
Pinging 192.168.0.1 with 32 bytes of data:
Reply from 192.168.0.1: bytes=32 time<1ms TTL=64
Code:
Pinging 192.168.1.1 with 32 bytes of data:
Reply from 192.168.1.1: bytes=32 time<1ms TTL=64
Code:
tracert 192.168.1.10

Tracing route to 192.168.1.10 over a maximum of

  1    <1 ms    <1 ms    <1 ms  192.168.0.1
  2     *        *        *     Request timed out.
Logged
alexroi17
Jr. Member
*
Offline Offline

Posts: 2


« Reply #1 on: Saturday 23 January 2010, 01:49:06 am »

Any tips how to troubleshoot?
Logged
mrkroket
Hero Member
*****
Offline Offline

Posts: 495


« Reply #2 on: Saturday 23 January 2010, 08:01:27 am »

Try to create a global inter-zone rule, to accept ANY traffic from ANY (i.e. like disabling the firewall). Just to test if traffic passes this way.
 Enable all logs on inter-zone to see what happens.

Give us more tracert, from computer A to B, EFW and Red DHCP server. The same from computer B and endian box.

Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.078 seconds with 21 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com