Lan to opt1 trafic
-
HI all
I ve connected new remote branch to PFsense opt1 interface , I connected the cat6 cable from the router directly to opt1 interface
opt1 interface ip is :192.168.124.2 /24
router ip gateway interface : 192.168.124.1 /24lan interface ip : 172.16.50.50/16 and the database server 172.16.220.220 /16
from the remote site which has ip address 192.168.122.0 /24 , I ve a database server having the ip : 192.168.122.10
to be able to connect to the server 172.16.220.220 from the remote branch I ve done VIP nat 172.16.220.220==192.168.124.124 on PFsense firewall
from my remote branch I can ping the opt1 interface 192.168.124.2
I cant ping VIP 192.168.124.124
I can trace route till 192.168.124.124 and tracing keep continuing with stars or without closing the connection by reaching the destinationI have done static route to reach network 192.168.122.0/24 go through gateway 192.168.124.1
even though the ready easy creation of rule has detected a connection coming from opt1 interface with the ip 192.168.122.10 going to lan interface heading to 172.16.220.200 via icmp protocol .
from firewall diagnostics ping command I can ping the followings :
remote branch gateway 192.168.122.1
my remote branch's database server ip :192.168.122.10
opt1 interface 192.168.124.2
VIP address 192.168.124.124its obvious the lan network is not able to reply back to opt1 network
when I try to trace route branch server 192.168.122.10 from the lan net server 172.16.220.220 no traceroute and its not even detecting the gateway to the network 192.168.122.0just giving stars * * *
-
please draw a network diagram with the corresponding subnets.
why do you wish to nat ?
-
"172.16.220.220 /16"
Why would you use such a large network? Do you have some 65k nodes there?
-
please draw a network diagram with the corresponding subnets.
why do you wish to nat ?
[/quotdiagram is attached
-
"172.16.220.220 /16"
Why would you use such a large network? Do you have some 65k nodes there?
yeah there are a lot of connecting people diagram is attached
