This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Masquerading not working

Hi,

I have the following configuration in UTM9 behind an ISP modem. ISP modem LAN IP address is 172.16.5.1

 

Sophos UTM WAN Interface

--------------------------------------

(Assigned by DHCP from ISP Modem)

IP: 172.16.5.60

Subnet Mask: 255.255.255.0

Gateway: 172.16.5.1

DNS: 8.8.8.8

 

Sophos UTM LAN Interface

--------------------------------------

IP: 192.168.2.100

Subnet Mask: 255.255.255.0

 

Firewall Rule

---------------------------------

Internal (Network) -> Any -> Any -> Allow

 

Masquerading

----------------------------------

Internal (Network) -> External (WAN)

 

-------------------------Problem----------------------------------

From Sophos UTM9 (Support -> Tools -> Ping

From WAN interface ping ISP modem is successfull

From LAN interface ping ISP modem is failing

From LAN computers to ISP modem ping failing, internet not working.

 

 

Please support to solve the issue.

 

 



This thread was automatically locked due to age.
Parents
  • Did you activate IPv4 Default GW at external WAN interface?

    Best regards 

    Alex 

    -

  • Yes, the gateway IP address is given in the WAN interface.

    I have removed masquerading and added a SNAT then the ping from LAN interface is successful. I checked with wire shark, when masquerading is enabled the outgoing packets are not getting the IP change through NAT, when in SNAT the IP is changing to WAN interface IP. So the connection upto ISP modem is OK when SNAT is configured.

    Still the internet is not working, when doing ping to 8.8.8.8 the packet is not going out of the UTM.

    The UTM is a VM installed in vMware player in windows 10. The VM have 2 virtual LAN cards which is using a single physical LAN card in the windows. when I set the SNAT, the Firewall logs shows that the ping to 8.8.8.8 is accepted, but the wireshark in windows doesnt show the packet.

  • Jose S said:

     

    ...The UTM is a VM installed in vMware player in windows 10. The VM have 2 virtual LAN cards which is using a single physical LAN card in the windows. when I set the SNAT, the Firewall logs shows that the ping to 8.8.8.8 is accepted, but the wireshark in windows doesnt show the packet.

     

    Huh, in a VM with one physical network card. That sound really complicated to me. Because there are several ways of using the host network in VMware on a windows system, bridging or NAT. Maybe if it’s possible to use VLANs that would be more easy to understand (for me).
    So, sorry I didn’t have more hints here.
     
    Best regards 
    Alex 

    -

Reply
  • Jose S said:

     

    ...The UTM is a VM installed in vMware player in windows 10. The VM have 2 virtual LAN cards which is using a single physical LAN card in the windows. when I set the SNAT, the Firewall logs shows that the ping to 8.8.8.8 is accepted, but the wireshark in windows doesnt show the packet.

     

    Huh, in a VM with one physical network card. That sound really complicated to me. Because there are several ways of using the host network in VMware on a windows system, bridging or NAT. Maybe if it’s possible to use VLANs that would be more easy to understand (for me).
    So, sorry I didn’t have more hints here.
     
    Best regards 
    Alex 

    -

Children
No Data