Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 27 subscribers
  • Views 6766 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Routing ins WAN/Internet funktioniert nicht

John_Doe123

Hallo liebe Community,

egal aus welchem Netz ich komme, die Sophos routet nicht ins WAN-Netz/Internet weiter.

WAF und der Ping von der Sophos ins Internet klappt ohne Probleme, Default Route hat er auch das richtige Gateway.

 

Schnittstellen:

Statisches Routing:

Firewall-Regel:

 

NAT ist ausgeschaltet:

 

Ich hoffe ihr könnt mir weiterhelfen.

 

Viele Grüße

 



This thread was automatically locked due to age.
Parents
  • 0

    Hallo,

    Erstmal herzlich willkommen hier in der Community !

    (Sorry, my German-speaking brain isn't creating thoughts at the moment. [:(])

    As gsxfan said, your Static Routes are redundant to the routes created automatically by WebAdmin when you define subnets on Interfaces and you do need an active Masq rule.  #3.1 in Rulz lists some other common TCP/IP routing mistakes.

    Also, you need to be conscious of the fact that "External (WAN) (Network)" is not = "Internet IPv4" - in other words X.Y.30.32/28 is not = 0.0.0.0/0.

    Ping and Traceroute are regulated on the 'ICMP' tab of 'Firewall' - see #2 in Rulz to better understand the order in which rules  are processed.  The "Any" Service includes only TCP and UDP - none of the other IP Protocols are included.

    Don't feel badly about these beginners' mistakes with WebAdmin - I've seen Cisco CCIEs make more errors when first starting.

    MfG - Bob (Bitte auf Deutsch weiterhin.)

Reply
  • 0

    Hallo,

    Erstmal herzlich willkommen hier in der Community !

    (Sorry, my German-speaking brain isn't creating thoughts at the moment. [:(])

    As gsxfan said, your Static Routes are redundant to the routes created automatically by WebAdmin when you define subnets on Interfaces and you do need an active Masq rule.  #3.1 in Rulz lists some other common TCP/IP routing mistakes.

    Also, you need to be conscious of the fact that "External (WAN) (Network)" is not = "Internet IPv4" - in other words X.Y.30.32/28 is not = 0.0.0.0/0.

    Ping and Traceroute are regulated on the 'ICMP' tab of 'Firewall' - see #2 in Rulz to better understand the order in which rules  are processed.  The "Any" Service includes only TCP and UDP - none of the other IP Protocols are included.

    Don't feel badly about these beginners' mistakes with WebAdmin - I've seen Cisco CCIEs make more errors when first starting.

    MfG - Bob (Bitte auf Deutsch weiterhin.)

Children