D-Link Forums

The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: ffedde on September 05, 2010, 09:56:56 PM

Title: talk between differents subnets in the same LAN
Post by: ffedde on September 05, 2010, 09:56:56 PM

Dears,

I can't get this to work. May be sameone can help me.

DFL-1600. In a datacenter. We have to differents subnets:

- 200.x.x.x (with his gatewar 200.x.x.1)
- 190.x.x.x (with his gateway 190.x.x.1)

The datacenter enters via WAN1 and in the LAN1 we have all the servers connected (transparent mode).

All is ok, but a server with an IP 200.x.x.x cannot see, ping, http, etc a server in the same LAN1 port that has an IP in the subnet 190.x.x.x, and viceversa...

It tried differents IP rules, and routing tables, but apparently I cannot get it right...

Title: Re: talk between differents subnets in the same LAN
Post by: danilovav on September 06, 2010, 08:00:38 PM

Does DFL configured as gateway for 200 and 190 networks?
Does networks connected to same port of DFL or different?

Title: Re: talk between differents subnets in the same LAN
Post by: ffedde on September 07, 2010, 03:03:56 PM

Hi!!!

I tested the two ways. One network en each lan (only for test, because that way is not helpfull for me) and the two networks in tha same lan port. Itś the same. They cannont see each other. When DFL is not there, al the nets can talk withput problems.

I've configures a IP rule like:
 wan1_all    Allow    any (source interface)    all-nets (source net)    any (dest. interface)    all-nets (dest. nets)    all_services

Also in "routing table" I set:

Route    wan1 (interface)    all-nets    wan1_gw       100 (metric)

I'm not enterely sure if this IP rule and routig table is the gateway do you mentioned.

Title: Re: talk between differents subnets in the same LAN
Post by: danilovav on September 07, 2010, 07:25:02 PM

Let start with way with two interfaces, later it can be changed.

When you connect networks, you should specify lan*_ip (*.x.x.1) and lan*net (*.x.x.0/24 i think). On "routing" tab, check "add route for interface network".
Each client in subnet should have DFL as default gateway.
After it, allow rule should forward traffic between networks.

Title: Re: talk between differents subnets in the same LAN
Post by: ffedde on September 08, 2010, 08:06:30 AM

yep!, I had it already, each gateway and lannet on each port.

The thing I don't have is that each client in the subnet set with DFL gateway... That IP would be the "lan*_gw" ? or the "lan*_ip", or the wan1_gw? ?

Title: Re: talk between differents subnets in the same LAN
Post by: danilovav on September 08, 2010, 11:02:49 AM

By lan* i mean lan1 and lan2, or lan and dmz - interfaces connected to your networks.
Please show your IP rules and Status > Routing.

Title: Re: talk between differents subnets in the same LAN
Post by: silver_surfer30 on October 10, 2010, 08:37:18 PM

what we can think of is : what is the address of the lan interface ?

Then add ip alias of one of those two network by creating correct routes and correct IP rules.