Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 10 replies
  • Subscribers 2 subscribers
  • Views 535 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Adding a 3rd nic and then system error

equintana
Hi,


I have a server with astaro access gateway v7.504 installed. Lovely!! 

I added a 3rd nic,  a old nic. Now  eth0 eth1 and eth2(new) installed.

1st state up and link up
2nd state up and link down
3rd state up and link up


When I added the 3rd one, 2nd links went down. 3rd has no wire attached yet. 1st and 2nd yes.

If I remove 3rd, system works fine. All of them have differents ips address.

Is this last nic bad?

Best regards


This thread was automatically locked due to age.
Parents
  • 0
    Yes, the servers are sending the responses to their default gateway.  A quick-and-dirty fix to prove that would be to create a NAT rule: 'VPN Pool (SSL) -> Any -> Internal (Network) : SNAT from Internal (Address)'.  The downside to that is that all traffic now appears to come from the Astaro instead of specific IPs.

    If you have a router that's between the servers and their default gateway (or the gateway is a router), you can add a route there instead of using the SNAT trick.  If there is no router, and you have only a few servers, you could add a route in each server.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Yes, the servers are sending the responses to their default gateway.  A quick-and-dirty fix to prove that would be to create a NAT rule: 'VPN Pool (SSL) -> Any -> Internal (Network) : SNAT from Internal (Address)'.  The downside to that is that all traffic now appears to come from the Astaro instead of specific IPs.

    If you have a router that's between the servers and their default gateway (or the gateway is a router), you can add a route there instead of using the SNAT trick.  If there is no router, and you have only a few servers, you could add a route in each server.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Cookie Information Banner