Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 2 subscribers
  • Views 1397 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Routing Question

DarkServant
Hi there

I have two Firewalls an ASG7 and a pfsense. I want to connect from my Internal LAN (192.168.5.0/24) to the pfSense Management NIC (172.25.170.15) via a separate Interface (172.25.170.16). What should i do to get this setup working? Do i need an Gateway or Interface Route and do i need NAT/masquerading?

Thanks for your Answers



This thread was automatically locked due to age.
  • 0
    I think you need someone other than me to help you, but I would suggest that you explain what's in your DMZ, what services you offer to the public from the DMZ, what things you want to do with the Astaro, etc.  There are different ways to answer your questions, and I know that explaining the context will help you get the information you need.

    Cheers - Bob
    PS One of the admins recommended the following for people new to this board: How To Ask Questions The Smart Way
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Ok, i'll try it again, and look that i can get a more accurate question to the problem.

    Sorry
  • 0
    I would think that simply configuring the 3rd NIC on Astaro would be enough, as it sets routes up automatically.
    However, the PFSense firewall may not know how to respond, in which case a SOURCE NAT on Astaro, from a PC or PCs on the LAN, to nat to the the 3rd interface, might work.

    Have you done any packet traces to see if the packets are going out the right interface on Astaro, and/or reaching PFSense?

    Barry
  • 0 in reply to BarryG
    It was a problem because i added/changed a NIC and i think the Astaro doesnt mapped this correctly. Ive reinstalled the ASG Software yesterday about 4 times [:$]

    thanks for your help
  • 0 in reply to DarkServant
    Right, to add a NIC, you're supposed to backup, re-install and then restore the backup.

    Barry
  • 0 in reply to BarryG
    It's been a few months, but I think I added an adapter identical to one of the existing ones and did not have to do a reload.  Am I not remembering correctly?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Depends... did you 'hack' /etc/modues or modules.conf?

    Barry
  • 0 in reply to BarryG
    No, just plugged it in, booted and started playing with it.  I just checked my Executive Reports.  I did this around the beginning of March, and I have log files all the way back to 10/22/2008 when I replaced our old computer with one a bit newer.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Cookie Information Banner