10-25-2006 07:24 AM - edited 03-03-2019 02:28 PM
Hi
We've got a LAN site with a BorderManager server that has got two cards (one with a public address, one with private). The public card goes into a DMZ (Nortel switch - sorry!) and the private into another Nortel switch inside of the firewall. I can connect to all devices inside the firewall but nothing in the firewall or beyond.
All I've added onto the config is
IP route 172.x.x.x Class C 10.21.1.10 (this is the private card of Border Manager)
Am I missing something fundamental? Any suggestions gratefully received!
Thanks
Miles
10-27-2006 02:24 PM
Your description of the topology is not really clear. Check what is the default gateway of your machines, is it the default manager?
Do a trace from the machines and see where do they exit etc...
10-29-2006 08:12 AM
Check the following assumptions:
1. clients have a default gateway.
2. the Border manager has a default gateway
3. NAT is set up to nat the private address to public (do you need a static address?)
4. If the inside network and the Border manager box are both using private ranges, I'd recommend not NATting between the two private networks to simplify your rules (it's much more complicated to keep track of the fact that traffic would be NATted twice - once from inside to DMZ and again from DMZ to outside.)
Temporarily, write some ACLS that permit ICMP to function and then check ping functionality
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide