OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • English Forums »
  • General Discussion »
  • Secondary gateway / Route not working
« previous next »
  • Print
Pages: [1]

Author Topic: Secondary gateway / Route not working  (Read 3109 times)

Deepak Kumar

  • Newbie
  • *
  • Posts: 17
  • Karma: 2
    • View Profile
Secondary gateway / Route not working
« on: October 30, 2017, 12:33:57 pm »
Hi Everyone,
I am facing an issue with a route. I am using OPNsense firewall in Bridge mode. My Internal Network (behind the l3 Core Sw) is on 10.10.10.0/24 series and my ISP router to L3 Switch Uplink (Firewall is between of both) are on 10.10.11.0/24 series.
I have added a default route toward to WAN, is working fine. But I have added a static route toward to my L3 Switch and Internal LAN is not working fine.

Firewall routing table is:

root@FO-FIREWALL:~ # netstat -r
Routing tables

Internet:
Destination        Gateway            Flags     Netif Expire
default            10.10.11.1         UGS     bridge0
google-public-dns- 10.10.11.1         UGHS    bridge0

10.10.10.0/24      10.10.11.3         UGS     bridge0

10.10.10.21        10.10.11.3         UGHS    bridge0
10.10.11.0/24      link#7             U       bridge0

10.10.11.2         link#7             UHS         lo0

10.10.11.3         02:14:a0:a5:14:00  UHS     bridge0
localhost          link#4             UH          lo0


When I am trying to my 10.10.10.0 series system then getting the following error:

root@FO-FIREWALL:~ # ping 10.10.10.1
PING 10.10.10.1 (10.10.10.1): 56 data bytes
36 bytes from 10.10.11.1: Redirect Host(New addr: 10.10.11.3)
Vr HL TOS  Len   ID Flg  off TTL Pro  cks      Src      Dst
 4  5  00 0054 607e   0 0000  3f  01 f214 10.10.11.2  10.10.10.1

36 bytes from 10.10.11.1: Time to live exceeded
Vr HL TOS  Len   ID Flg  off TTL Pro  cks      Src      Dst
 4  5  00 0054 607e   0 0000  01  01 3015 10.10.11.2  10.10.10.1

36 bytes from 10.10.11.1: Redirect Host(New addr: 10.10.11.3)
Vr HL TOS  Len   ID Flg  off TTL Pro  cks      Src      Dst
 4  5  00 0054 3da3   0 0000  3f  01 14f0 10.10.11.2  10.10.10.1

36 bytes from 10.10.11.1: Time to live exceeded
Vr HL TOS  Len   ID Flg  off TTL Pro  cks      Src      Dst
 4  5  00 0054 3da3   0 0000  01  01 52f0 10.10.11.2  10.10.10.1

Please help to troubleshoot the issue.

Thanks,
Deepak Kumar


Logged

Deepak Kumar

  • Newbie
  • *
  • Posts: 17
  • Karma: 2
    • View Profile
Re: Secondary gateway / Route not working
« Reply #1 on: May 15, 2018, 01:07:07 pm »
Its resolved after configuring the Floating rules in the firewall.

Regards,
Deepak Kumar
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • English Forums »
  • General Discussion »
  • Secondary gateway / Route not working
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2