Hi, after trying everything I'm a bit stuck and need help.
Astaro V.5.101
I have problem reaching resources from my dmz to lan.
Current interface config.
10.1.1.0/24 lan gateway none
10.1.2.0/24 dmz_int gateway none
81.191.130.208/24 adsl gateway 81.191.130.1
I have a packetfiler rule allowing: dmz_int to lan service any.
I have setup maskerading from dmz_int to adsl and lan to adsl.
Default gateway on lan is set to: 10.1.1.254
Default gateway on dmz is set to: 10.1.2.254
I am able to ping hosts on dmz from lan,
but I'm unable to ping hosts on lan from dmz.
I'ma able to ping external resources on internet from
both dmz and lan.
icmp forwarding is on
icmp on firewall off
log icpm redirects on
firewall is traceroute visible off
firewall forwards traceroute on
traceroute from firewall on
firewall is ping visible off
firewall forwards pings on
ping from firewall on
The connections tracker logs traffic:
icmp 1 29 src=10.1.2.240 dst=10.1.1.147 type=8 code=0 id=36102 [UNREPLIED] src=10.1.1.147 dst=10.1.2.240 type=0 code=0 id=36102 use=1
The routing table on dmz host 10.1.2.240
says[:D]efaul gateway 10.1.2.254.
Do I have to set a route on the firewall, why wont it forward
the packets to lan?
This thread was automatically locked due to age.
