Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

problem with 3 NIC

Status
Not open for further replies.
kevinchen129

kevinchen129

ISP
Dec 13, 2001
5
0
0
US
There is a firewall in a solaris Box, installed 3 NICs.
One NIC as out port(elxl0), two of NIC as inside port(elxl1 and elxl2). elxl0 and elxl1 are working well as a firewall. But I can't ping elxl2 from inside network.(elxl2 is up).
ip address for elxl1 (192.168.0.1), for elxl2 (192.168.0.2).
What's the problem?

Thanks,
 
Sort by date Sort by votes
but I can ping elxl1, firewall configuration for elxl1 and elxl2 is same.
 
Upvote 0 Downvote
Two thoughts:

1. You client OS firewall is blocking the response. For XP clients this is a common problem. Disable it.

2. Your switch/router is blocking it. Check the router configuration to make certain that ICMP packets are not being discarded by the router.




 
Upvote 0 Downvote
Thanks,
I am trying to use the firewall as a router to connect a
different physical network.
I got following message with using snoop at the firewall host,
# snoop -d elxl2 -V
Using device /dev/elxl (promiscuous mode)
________________________________
192.168.0.5 -> lobby ETHER Type=0800 (IP), size = 74 bytes
192.168.0.5 -> lobby IP D=192.168.0.2 S=192.168.0.5 LEN=60,
ID=16640
192.168.0.5 -> lobby ICMP Echo request (ID: 512 Sequence number:
10752)
________________________________
192.168.0.5 -> lobby ETHER Type=0800 (IP), size = 74 bytes
192.168.0.5 -> lobby IP D=192.168.0.2 S=192.168.0.5 LEN=60,
ID=16896
192.168.0.5 -> lobby ICMP Echo request (ID: 512 Sequence number:
11008)
________________________________
192.168.0.5 -> lobby ETHER Type=0800 (IP), size = 74 bytes
192.168.0.5 -> lobby IP D=192.168.0.2 S=192.168.0.5 LEN=60,
ID=17152
192.168.0.5 -> lobby ICMP Echo request (ID: 512 Sequence number:
11264)
________________________________

I don't know why the elxl2 (192.168.0.2) won't response the request.
the router isn't configured to block ICMP or Telnet.
 
Upvote 0 Downvote
kevinchen129:
It's look like a route table problem. the route to the
net 192.168.0.0/24 is point to elxl1,so your ICMP request
to elxl2 was responed by elxl1.
You could test this to change the IP address of elxl2 to
a diff sub-net,like 192.168.100.2/24,then link a client with
IP 192.168.100.5/24 to ping elxl2.

Good Luck!
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

robocat
  • Locked
  • Question
Yet another TCP RST flag problem
Replies
0
Views
124
robocat
robocat
Guthro
  • Locked
  • Question
BT Loopback problem - finally resolved.
Replies
0
Views
37
Guthro
Guthro
BuilderSpec
  • Locked
  • Question
LDAP with AD/LDS
Replies
0
Views
49
BuilderSpec
BuilderSpec
SirBlack
  • Locked
  • Question
Internet connection problem
Replies
5
Views
43
kjv1611
kjv1611
DrB0b
  • Locked
  • Question
Multiple WiNG Zebra Access Points with possible issue
Replies
1
Views
119
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top