Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 41 subscribers
  • Views 1081 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Not all WAN-IPs are accessable after restore

xg-andy

Hey guys,

i had a strange problem.

- Installed Version is 19.5.4

- I restored a backup from XG 330 to a new XGS 3300.

- After restoring i create the HA

Now it seems that not all WAN-IPs are accessable (it is a /27 subnet on Port2).

I allowed ping from outside/WAN and i can just ping from outside 11 WAN-IPs of 27.

What i've done:

- cleared the ARP-Table

- checked the IPs with "ip a" on Advanced Shell (all correct)

- from the firewall itself i can ping all local WAN-IPs (correct)

- tried to ping the WAN-Gateway with the defined source-address (working for all addresses)

Any ideas what i else can do?



This thread was automatically locked due to age.
  • 0

    Hi,

    You have checked that failing addresses have active devices attached?
    ian

    XG115W - v20.0.1 MR-1 - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Yes. Webserver are not accessable. I also tried tcpdump but i don't see any traffic on the failing addresses. Maybe it is a provider topic but i want to check everything from my side..

  • 0 in reply to xg-andy

    From SSH run and share the output from option 4.

    console> system diagnostics utilities arp ping source <AliasIP> interface PortB <Gateway IP>

    Please check and verify traffic flow under MONITOR & ANALYZE || Diagnostics || Packet Capture passing from the same firewall rules and drop packet

    Regards

    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

Unfiltered HTML