This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Routing through Firewall

Hello,

I am trying to configure a network, I set ASG8 as a Firewall and as the default gateway of my applications.

As you can see, I have 3 Vlans.
VLAN 2 ping VLAN 120
VLAN 120 ping VLAN 2
(without configuration)

VLAN 2 + VLAN 120 ping VLAN 96.
(configuration)

But my problem, VLAN 96 doesn't ping VLAN 2/120.
I tried "Policy route", but it didn't work, I don't know how set the best configuration.
This is not my router configuration, I'm sure, because when I changed the default gateway of my Client in VLAN 2 on G0/0, I could ping it with VLAN 96.

Thanks
Regards

This thread was automatically locked due to age.

0 RFCat_vk_01 over 12 years ago

Hi,
It will be something quite simple like ICMP is not enabled in network protection.

Ian
Cancel
Vote Up 0 Vote Down

Cancel
0 FlorianVN over 12 years ago in reply to RFCat_vk_01
Hello,

Thanks, but I'm sorry ICMP is already enable.
I found why it didn't work, I've put a bad default gateway.
Source Interface : Any (eth1, eth2 firewall)
Source Network : VLAN 2 + 120
Service : Any
Destination network : VLAN 96
Gateway : Router PPP G0/0

But...
Now I can't ping my Firewall ports from the VLAN96, but I can ping VLAN 120 & 2.
And I would like to have an access on Internet without disturb my configuration if is possible.
Cancel
Vote Up 0 Vote Down

Cancel
0 gilipeled over 12 years ago

Hi ,

As per the design you sent it looks problem comes from a missing route on the ppp router.
VLAN 96 is behind a ppp router.
I suggest firs unable icmp on firewall not only trough firewall in packet filter advance.
Then try to ping VLAN 96 from the UTM then from VLAN 96 to the UTM.
When this will work all other will work.

All my best
Cancel
Vote Up 0 Vote Down

Cancel