Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    return route to DMZ not working

    Scheduled Pinned Locked Moved Firewalling
    1 Posts 1 Posters 156 Views 1 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M Offline
      mrjoli021
      last edited by

      I have a /30 for my WAN and a /28 for my DMZ. My LAN is using one of the public's from the /28 as the NAT IP for outbound traffic. I have a public facing server on the DMZ with the static public IP on it. I have the appropriate rules to secure it. This server I am able to access it from the public internet, but not from my LAN. I have checked the server and apparently it is getting the traffic from the WAN ip, but I am guessing the return traffic is being blocked. Not sure how to diagnose this because I am not seeing anything on the firewall logs to indicate that the traffic is being blocked on the firewall. I am not blocking my IP or anything on the server ie, fail2ban and/or iptables. When I do a simple ping test, the traffic gets to the server from my LAN, but doing a tcpdump on my computer, I am not seeing the return traffic come back to me.

      At one point this was working. I know that from the server's perspective nothing has changed on it in a very long time. I am not sure if I changed something on the firewall to break it. The only thing I remember doing was upgrading the firewall to 2.5.2. (I am not saying this broke it, just saying it is the only thing I remember doing).

      Any idea how to fix this and/or how to troubleshoot this further?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.