Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 2 subscribers
  • Views 1713 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to open up ports between subnets in Astaro Security Gateway?

Uncle B
Hi

I'm having trouble to allow my ant-v from one subnet be used in another subnet.

The issue is I'm using ASG V7, and I have two subnets one with 10.10.10.x and the other 10.10.1.x.

My ant-v is on 10.10.1.x and would like my clients residing in 10.10.10.x to be able to use it.

Any one out there with an idea on how I could sort this out?

Thanks in advance.

Uncle B.


This thread was automatically locked due to age.
Parents
  • 0
    Hi, Uncle B, and welcome to the User BB.

    Do you have a packet filter rule like '{10.10.10.x definition} -> Any -> {10.10.1.x definion} : Allow'?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Hi, Uncle B, and welcome to the User BB.

    Do you have a packet filter rule like '{10.10.10.x definition} -> Any -> {10.10.1.x definion} : Allow'?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • 0 in reply to BAlfson
    I am having a similar issue. There is a server on subnet A and clients on subnet B. Clients could communicate with the server no problem, before I subnetted the server.
    To troubleshoot this, I created a service "Any.At.All" {TCP/UDP 1:65535 → 1:65535}
    and two rules:
    {Subnet A} → {Any.At.All} → {Subnet B} → Allow
    {Subnet B} → {Any.At.All} → {Subnet A} → Allow

    Application doesn't work. It is pretty ugly, it uses a 255.255.255.255 broadcast to discover the server, there is also ability to specify the server's IP, but nothing is discovered.

    I can't even ping the server from Subnet B. What is wrong?
Cookie Information Banner