Where do I unblock Private IP addresses? I only see that option on the WAN interface of the m0n0wall firewall.
Here are some snipets from the router in that office
cisco#show ip int br Interface IP-Address OK? Method Status Protocol FastEthernet0/0 172.16.88.21 YES NVRAM up up FastEthernet0/1 unassigned YES NVRAM administratively down down Serial0/3/0 172.17.1.90 YES NVRAM up up
cisco#ping 10.60.2.1 source fa0/0
Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.60.2.1, timeout is 2 seconds: Packet sent with a source address of 172.16.88.21 !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/4 ms
cisco#traceroute 10.60.2.1 source fa0/0
Type escape sequence to abort. Tracing the route to 10.60.2.1
1 172.16.88.22 4 msec 0 msec 0 msec 2 10.60.2.1 4 msec * 0 msec
cisco#ping 10.60.2.1 source s0/3/0
Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.60.2.1, timeout is 2 seconds: Packet sent with a source address of 172.17.1.90 .... Success rate is 0 percent (0/4)
cisco#traceroute 10.60.2.1 source s0/3/0
Type escape sequence to abort. Tracing the route to 10.60.2.1
1 * * * 2 * * * 3 * *
And here is the logs from the firewall
failedping attempts: 21:54:21.998475 LAN 172.17.1.90 10.60.2.1, type echo/0 ICMP failed traceroute i assume: 21:55:09.889070 LAN 172.17.1.90, port 49233 10.60.2.1, port 33434 UDP
I have added a static route to the Wifi interface to route 172.16.4.0 /22 through 172.16.88.21 ( Cisco Router) and this still doesnt work. I know that I am not pinging from that network in the above failed attempts but I left for simplicity and I get the same failed results from the 172.16.4.0 network. The traffic is definately getting blocked on the Firewall.
|