11-07-2013 06:02 AM - edited 03-04-2019 09:31 PM
Hello All,
We are currently facing an asymmetric routing issue. Please find the attached network diagram. The firewall in the network is dropping the final ack packet as it has never received syn/ack packet. Is there any solution to these kind of network diagram except chaning the gateway of the default vlan l3.
Your inputs will be highly appreciated.
Thanks in advance.
Ravi
11-07-2013 06:11 AM
I do not see any solution to this other than changing the default gateway from fw to L3.
HTH
Rick
11-07-2013 06:46 AM
Hi,
enabling ICMP redirect sending by the FW would fix it.
But I'm not sure if your FW provides this feature?
Best regards,
Milan
11-07-2013 07:45 AM
I think the resolution of your problem seems to be in avoiding inter VLAN routing. You can apply a PBR on Server VLAN and forward traffic sourced from server to default VLAN machine towards FW.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide