Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 7 replies
  • Subscribers 28 subscribers
  • Views 8090 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Web Proxy 3128 - Not Working on Other Subnets

mark57165

I've successfully installed and configured the application as a bridge and it's filtering and reporting nicely.  My network has several vlans.  I can connect to the proxy on 3128 from a non-vlan address, but I can't connect from a vlan address.  The vlans, DHCP, etc. are all handled by other network gear.



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    please provide a diagram of your network and screenshot/s of your firewall rules.

    Ian 

  • 0 in reply to rfcat_vk

    Also, I can't seem to properly connect from the firewall to other hosts on my LAN.  For example, I'm trying to set up LDAP to a server on my lan (10.1.1.7) and it's not working.

    I can ping from LAN to firewall and from firewall to LAN.

    I can traceroute from firewall to LAN, but when I try to traceroute from LAN to firewall... no go.

  • 0 in reply to mark57165

    Hi Mark,

    A question about your network with the use of a router and the XG, what benefit do you see in having the router as the internet facing device rather than the XG?

    The issue being as far as I can tell your VLAN setup which seems overly complex to me? Also I am not sure how the XG handles VLANs in bridge mode?

    Ian

  • +1 in reply to rfcat_vk

    The main reason I’m using this in bridge mode is because I like the router I’m already using on this network and want to keep it.

    My solution to this was to enable another port on the device, connect it to the network as a “client,” and add all the VLANs to it. Everything that wasn’t working seems to be working fine now.

  • 0 in reply to mark57165

    Thank you for the update.

    I am not sure what extra security you think you will see with that setup? If the router is attacked all your VLANs fail, where as if you put the XG on the internet side of the router you get another level of protection with updated anti whatever.

    Ian

Reply
  • 0 in reply to mark57165

    Thank you for the update.

    I am not sure what extra security you think you will see with that setup? If the router is attacked all your VLANs fail, where as if you put the XG on the internet side of the router you get another level of protection with updated anti whatever.

    Ian

Children