Hello, thankyou for your time in reading this query.
I am new to the ASG interface, trying to figure out the logical approach to setting up various item. I am trying to setup appropriate ASG configuration to allow a bridge connected host (Server A 192.9.200.170) traverse ASG firewall to a connected Server B host (172.22.131.1) on an untrusted network.
Hopefully the sketch explains the situation. Server A sits on private address 192.9.200.170/24 on a bridged ASG network. Server A needs to communicate using TCP/UDP trafficfor all ports to Server B on 172.22.131.1 via edge router 172.30.128.1/24.
Server A 192.9.200.170/24 is configured with a static route for network 172.22.131.0/24 with a gateway of 192.9.200.210 (the ASG). A traceroute from Server A to 172.22.131.1 verifies traffic is leaving the correct interface with response from the ASG on interface 192.9.200.210. The second hop disappears. I have also verified from the ASG firewall tracerouting out that it can get to 172.22.131.1 via edge router 172.30.128.1, using a static gateway route.
It appears I've got something wrong with packet filtering or a NAT, I'm not sure.
After walking through the ASG v7 manuals I cannot manage to route traffic through the ASG interface on 192.9.200.210 via the 172.30.128.150 interface.
I am missing something in configuration but I cannot figure out what it is. Any assistance would be greatly appreciated.
Apologies for such a simple question. I am sure this is easy when I can see the forest for the trees!
Thanks
This thread was automatically locked due to age.
