16
General Discussion / Can't reach internet from another subnet
« on: October 29, 2020, 07:54:41 pm »
Hi,
The internal interface on the firewall has an IP address of 192.168.0.250. The router it connects to has an IP address of 192.168.0.254.
The default route on the router is pointing to the firewall (192.168.0.250), and the default route for the internal interface of the firewall is the router (192.168.0.254)
Anything on the 192.168.x.x/24 subnet works fine.
The router has other VLANs / Subnets configured like 192.168.200.x/24. Anything on this subnet can reach the firewall, and visa versa.
Tracert on a PC on the 192.168.200.x/24 to the internet reaches the firewall 192.168.0.250 but then stops.
There is a rule specifically allowing 192.168.200.x/24 out.
When looking at the live diagnostics you can see traffic from 192.168.200.x/24 being allowed in green.
Problem is that anything in 192.168.200.x/24 can not ping or reach the internet in anyway, and can't figure out why?
There must be some other configuration other then a rule that that subnets needs to be included, I assume?
Many thanks in advance.
The internal interface on the firewall has an IP address of 192.168.0.250. The router it connects to has an IP address of 192.168.0.254.
The default route on the router is pointing to the firewall (192.168.0.250), and the default route for the internal interface of the firewall is the router (192.168.0.254)
Anything on the 192.168.x.x/24 subnet works fine.
The router has other VLANs / Subnets configured like 192.168.200.x/24. Anything on this subnet can reach the firewall, and visa versa.
Tracert on a PC on the 192.168.200.x/24 to the internet reaches the firewall 192.168.0.250 but then stops.
There is a rule specifically allowing 192.168.200.x/24 out.
When looking at the live diagnostics you can see traffic from 192.168.200.x/24 being allowed in green.
Problem is that anything in 192.168.200.x/24 can not ping or reach the internet in anyway, and can't figure out why?
There must be some other configuration other then a rule that that subnets needs to be included, I assume?
Many thanks in advance.