ScreenOS Firewalls (NOT SRX)
Highlighted
ScreenOS Firewalls (NOT SRX)

WebUI, ping, etc. on two interfaces

[ Edited ]
‎10-27-2010 02:07 PM

I have three interfaces set up on my SSG140

Ethernet1: local subnet

Ethernet2: ISP A

Ethernet3: ISP B

 

Ethernet 2 and 3 are setup identically, besides for the ip addresses. both have management, webui, ping etc. enabled.

 

Problem is that i could only access the WebUI, ping etc. from one of the two ISP interfaces at a time. when they are both up (and traffice to hosts behind the firewall flows through both interfaces ok), the WebUI, ping etc. will only respond from one of the interfaces. when i take one link down, the other interface starts responding to WebUI, ping etc. traffic.

 

any ideas?

thanks

2 REPLIES 2
Highlighted
ScreenOS Firewalls (NOT SRX)
Solution
Accepted by topic author sholomke
‎08-26-2015 01:27 AM

Re: WebUI, ping, etc. on two interfaces

[ Edited ]
‎10-28-2010 01:52 PM

Put the  below commands then try again :

set flow mac-cache mgt

save

 

**************  Click on the button saying " Accept  as Solution"  if  My Post solved your problem  **************

 

 

Highlighted
ScreenOS Firewalls (NOT SRX)

Re: WebUI, ping, etc. on two interfaces

‎10-31-2010 06:01 PM

Add two default routes in the routing table with the same preference of 20 , but add the one first which you want to make the primary and then add the later one.

 

set route 0.0.0.0/0 int <primary-int> gateway <gateway-1>

set route 0.0.0.0/0 int <secondary-int> gateway <gateway-2>

save

 

Enable all the management options on both the interfaces.. management should run fine.

Feedback