Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 3 subscribers
  • Views 6700 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Not able to ping Internal DNS Server through Red 50 Tunnel

MatthewRauterkus

I have a Red 50 set up for standard / split and I have the DHCP set for a different subnet 172.17.44.0/24 than my main subnet of 172.17.43.0/24. The gateway and dns for the DHCP group are the Sophos Red IP Address 172.17.44.254


I am able to connect to the internet, resolve hostnames of both internal servers and external websites, ping all servers on the main subnet except the internal dns server. This is the only one that will not ping or connect, so my domain computers at this site cannot log on.

Here is my current Red config:

I have the correct masq settings as I am able to get out on the internet just fine and the firewall settings are Second Network -> Any ->  Any

Any help would be appreciated as I am not able to deploy any computers to the second site until i can get this resolved.

Thanks,

Matt



This thread was automatically locked due to age.
  • 0

    Hi, Matthew, and welcome to the UTM Community!

    In general, pinging from inside the UTM to the Internet is regulated on the 'ICMP' tab of 'Interfaces'.  However, pinging between internal networks is regulated with firewall rules.  The other "trick" is that the "Any" service does not include ICMP, so you need, for example, '{second site network} -> Ping -> Internal (Network) : Allow'.
      Any better luck with that?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML