Ping but no other traffic

hiwj · ‎01-04-2012

I've got an SRX240 connected to a L3 switch which has 2 VLANs configured. The switch itself does the routing between VLANs, and I've configured static routes on the SRX240 so that it knows how to route to the other VLAN. My problem is that Server on different VLANs can Ping each other fine, but no other ports are reachable. If I create a static route on the server itself (instead of it using the SRX240 as it's default gateway), then everthing works fine. I havn't created any blocking rules on the SRX240 and I've created a policy to allow traffic within a zone.

Raheel · ‎06-18-2008

Please share the config.

thanks,

raheel

Follow me on Twitter @anwar_raheel

--
If this post was helpful, please mark this post as an "Accepted Solution".
Kudos are always appreciated!

Kashif-rana · ‎01-29-2008

Hi

If the server gateway is SRX and there is an IP from the same VLAN on core switch then traffic from VLAN1 to VLAN 2 (server VLAN) goes from VLAN1 to servers without going to SRX and return traffic will go through firewall, who does not have session so drop that one. This is basically asymmetric routing.

Please post the configuration of core switch and firewall. .

Kashif Rana
00971555962393
JNCIE-SP#1428,JNCIE-SEC#55,JNCIP(SP,ENT,SEC),JNCIS(FWV,SSL),JNCIA(IDP,AC,WX),BIG IP-F5-LTM, CCNP
----------------------------------------------------------------------------------------------------------------------------------------

If this post was helpful, please mark this post as an "Accepted Solution".Kudos are always appreciated!

Ping but no other traffic

Re: Ping but no other traffic

Re: Ping but no other traffic