Firewall Rules do not seem to work, cannot access web1 (opt1) from LAN side



  • Hi,

    I have a strange firewall issue.
    I have 4 public IP’s that are mapped to 4 internal IP’s.
    Once of the WEB servers is on the public IP -  that is mapped to an internal IP and has it’s own NIC (WEB1).
    I can get to the web pages from any external source – So I know the 1:1 mapping are working, and the firewall rules are working as well.

    The issue is that I cannot get to it from my LAN (my LAN and WEB are on different NICs [LAN & WEB1] and different IP address ranges [ 192.x.x.x & 10.10.x.x].)

    Firewall rules:
    WAN side:
    Any , port 80 to WEB1( 10.10.10.10) port 80
    Any , Port 443 to WEB1 ( 10.10.10.10) port 443
    LAN Net, Port ANY to WEB1 Net Port Any

    LAN Side ( I think this is not really required but added):
    Lan Net port any to WEB1 Net Port Any
    WEB1 Side ( I think this is not really required but added):
    Lan Net port any to WEB1 Net Port Any

    If more details are required please let me know and I can post.

    Thanks
    George



  • Please post screen shots of your firewall rules for LAN and OPT1. Also are you using the internal IP address or the external?



  • There is nothing in the logs either.
    As I said I can get to it from the outside but not from with in the LAN site of it.

    I am using internal IP address.

    See attached photos of the firewall rules for the required interfaces:






















  • Hi Thanks to all for the pinters.,

    Resolved, but the link did not really help.

    The real issues this time was with the DNS setting on the client - they were hard coded and not being picked up from the DHCP servers.
    Reconfigured NIC and ALL worked well.

    Next time return to basics…. My BAD -  :-[

    Regards
    George


Log in to reply