There are multiple external network addresses under the firewall network interface. Only the first address can be accessed and the others cannot be accessed. - Code World

There are multiple external network addresses under the firewall network interface. Only the first address can be accessed and the others cannot be accessed.

Mobile 2023-10-04 21:51:31 views: null

environment:

Active and backup firewall 8.0.75
AF-2000-FH2130B-SC

Problem Description:

Double-click hot standby for two firewalls. There are multiple external network addresses under the high-availability firewall virtual network interface Eth4. Only the first address can be accessed and the others cannot be accessed.

Insert image description here

Insert image description here

solution:

1. Check firewall routing settings (not resolved)

2. Open the firewall and troubleshoot the command console

Insert image description here
3. Start capturing the packets. It shows that the packets come in from the eth4 port and go out from the eth1 port. There is something wrong here.

tcpdump -i eth4 icmp and host 106.108.121.155 -nnc 1000

Insert image description here
4. Enable the source-in-source-out function under the physical interface eth4 (to solve this case)

Insert image description here

Guess you like

Origin blog.csdn.net/weixin_42672685/article/details/132413731

There are multiple external network addresses under the firewall network interface. Only the first address can be accessed and the others cannot be accessed.

There are multiple external network addresses under the firewall network interface. Only the first address can be accessed and the others cannot be accessed.

There are multiple external network addresses under the firewall network interface. Only the first address can be accessed and the others cannot be accessed.

There are multiple external network addresses under the firewall network interface. Only the first address can be accessed and the others cannot be accessed.

There are multiple external network addresses under the firewall network interface. Only the first address can be accessed and the others cannot be accessed.

There are multiple external network addresses under the firewall network interface. Only the first address can be accessed and the others cannot be accessed.

There are multiple external network addresses under the firewall network interface. Only the first address can be accessed and the others cannot be accessed.

There are multiple external network addresses under the firewall network interface. Only the first address can be accessed and the others cannot be accessed.

The elasticsearch external network IP cannot be accessed

nginx builds a virtual host, the internal network can access the external network and cannot be accessed

Alibaba Cloud server tomcat external network cannot be accessed

The problem that the ftp server cannot be accessed on Aliyun's external network

What should I do if the server IIS builds a website that cannot be accessed from the external network? How to turn off the firewall in windows server 2008?

The method of generating a domain name that can be accessed by the external network

Some urls of nginx can only be accessed by specific network segments

The ipv6 external network can be pinged, but the service cannot be accessed (self-built website, remote desktop, etc.)

Private addresses can be forwarded to the external network

Elasticsearch7.x is installed on the cloud server, but the external network cannot be accessed through ip:9200?

Centos Linux Open Port - Solve the problem that the Centos publishing service cannot be accessed from the external network

Without a public IP, how can a self-built website be accessed from the external network?

SSH tunnel is easy to build and use; the local computer LAN can be accessed through the external network

Enabling insecure guest login-solve multiple processing methods that cannot be accessed from the network disk

[Mobile website building] Android Termux+cpolar intranet penetration, build a website that can be accessed from the external network - no public network IP

The harbor pull image cannot be accessed. The harbor webpage can be logged in, but linux cannot be logged in.

The host can access the public network but cannot be accessed in the Docker container. Temporary failure in name resolution

All other websites can be accessed, only GitHub cannot access

Ubuntu16 host network connection provided under VMware, can be provided in Ubuntu VMware accessed by the host xshell

Tencent iQiyi server (URL) cannot be accessed (cannot be opened, no network)

Other addresses cannot be accessed after jboss is started

Remote port forwarding practice: how to forward the service of a certain port of the physical machine to the vps so that it can be accessed from the external network

Recommended

The number of MaxKB GitHub Stars, an open source knowledge base question and answer system based on large language models, exceeded 5,000!

Ranking

Getting the basic concepts of ROS + catkin Profile

Spring Learning (2) --- Assembling Beans in the IoC Container

js to get the src attribute of the image regularly

STM32 is based on CubeIDE and HAL library basics entry study notes: Bluetooth WIFI STM32 connects to Alibaba Cloud

Short video learning - 3, pandas simple use of pivot_table

Print directory of project configuration log, output log

Understand the difference between vi and vim in Linux in 3 minutes

1 + x certificate Web front-end development HTML5 special exercises

mangodb save and insert the difference

7-1 Family tree processing (50 points) (binary tree solution)

Daily

More

2024-05-13(8)

2024-05-12(28)

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)

2024-05-05(0)

2024-05-04(18)