SEO

Hi,


One of our firewall interface is not reachable in local, but is reachable
outside the firewall (arp and traffic ok).

If we try various command in local, we get :

[root@babaorum V120]# telnet 192.168.10.193
Trying 192.168.10.193...
telnet: Unable to connect to remote host: Cannot assign requested address

traceroute: Warning: Multiple interfaces found; using 0.0.0.0 @ ?
traceroute to 192.168.10.193 (192.168.10.193), 30 hops max, 40 byte
packets
1 * * *


And so any connexion FROM the firewall to any server on this lan
interface doesn't work.

But any network trafic THROW this interface is working, and we can ping
this interface from another server.

This is like the firewall can't see its own interface.


[root@babaorum V120]# ifconfig -a
eri0: flags=1000842<BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 1
inet 195.68.54.202 netmask fffffff0 broadcast 195.68.54.207
ether 0:3:ba:27:24:f3
eri1: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
inet 128.223.1.193 netmask fffff000 broadcast 128.223.15.255
ether 0:3:ba:27:24:f3
qfe0: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 3
inet 192.168.20.193 netmask fffffc00 broadcast 192.168.23.255
ether 0:3:ba:27:24:f3
qfe0:1: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index
3
inet 192.168.20.194 netmask fffffc00 broadcast 192.168.23.255
qfe1: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 4
inet 192.168.2.193 netmask ffffff00 broadcast 192.168.2.255
ether 0:3:ba:27:24:f3
qfe1:1: flags=1000842<BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 4
inet 195.68.54.212 netmask fffffff0 broadcast 195.68.54.223
qfe1:2: flags=1000842<BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 4
inet 195.68.54.254 netmask ffffffe0 broadcast 195.68.54.255
qfe1:3: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index
4
inet 192.168.2.191 netmask ffffff00 broadcast 192.168.2.255
qfe2: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 5
inet 192.168.30.193 netmask ffffff00 broadcast 192.168.30.255
ether 0:3:ba:27:24:f3
qfe2:1: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index
5
inet 192.168.30.34 netmask ffffffe0 broadcast 192.168.30.63
lo0: flags=1000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4> mtu 8232 index 6
inet 127.0.0.1 netmask ff000000
qfe3: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 7
inet 192.168.10.193 netmask ffffff00 broadcast 192.168.10.255
ether 0:3:ba:27:24:f3


[root@babaorum V120]# netstat -rn

Routing Table: IPv4
Destination Gateway Flags Ref Use Interface
-------------------- -------------------- ----- ----- ------ ---------
192.168.14.1 192.168.30.206 UGH 1 3
127.0.0.1 127.0.0.1 UH 1 16 lo0
192.168.30.0 192.168.30.206 UG 1 4197
192.168.30.32 192.168.30.34 U 1 1 qfe2:1
62.23.10.0 192.168.10.1 UG 1 25658
192.168.10.0 192.168.10.193 U 1 48277 qfe3
192.168.11.0 192.168.10.1 UG 1 21489
192.168.2.0 192.168.2.191 U 1 922889 qfe1:3
192.168.2.0 192.168.2.193 U 1 0 qfe1
192.168.30.0 192.168.30.193 U 1 3428 qfe2
192.168.20.0 192.168.20.194 U 1 45846 qfe0:1
192.168.20.0 192.168.20.193 U 1 0 qfe0
128.223.0.0 128.223.1.193 U 1 285532 eri1
224.0.0.0 195.68.54.202 U 1 0 eri0
default 192.168.10.1 UG 12023082


Any idea ?


Thanks in advance.