Questions tagged [firewall]
For questions about or relating to firewall operations, configuration and troubleshooting.
608 questions
1
vote
1
answer
25
views
vlan on bridge interface in opnsense firewall
Is it possible to create vlan on bridge interface in opnsense firewall, I have tried but while creating vlan, on interface call drop down there is not showing bridge interface to select.
- 11
0
votes
0
answers
23
views
How to debug and correct wrong routing policy using Fortigate in a network with multi-ISP?
The following diagram show the topology of our organization's network. We use two firewalls that one of them is a Fortigate 1500D and the other is OPNsense (firewall 2). Our network is connected to ...
- 101
1
vote
1
answer
223
views
Large (traceroute) SYN packets dropped in IPv4
I've been running a few TCP-traceroutes towards some target and noticed that larger SYN packets (say, >5B TCP payload) are dropped. But only in IPv4. In IPv6 those are still delivered.
I also ran ...
- 11
0
votes
1
answer
185
views
Vlan on Stormshield PB
I'm coming to this forum because after a lot of research and testing, I'm unable to set up a VLAN solution on a Stormshield SN 510. Regarding my infrastructure, a router providing internet access and ...
- 3
0
votes
2
answers
156
views
NAT policy filter
I am now using palo alto NAT policy, when I want to look up a specific NAT policy, for example the translated destination ip is 8.8.8.8.
How can I filter the NAT policy to find it ?
I know the ...
- 323
0
votes
1
answer
105
views
3 firewalls on a layer-2 switch, 1 acts as a default gateway for all devices
I am currently trying to setup a network madeup of a large layer-2 switch, some computers connected to that switch, 3 Cisco Firepower 1120 ASA Firewalls, and other networks beyond 2 of the firewalls, ...
1
vote
1
answer
136
views
2 Firepower 1120 Firewalls connected to a layer-2 switch
I am working 2 cisco firepower 1120 firewalls, which are connected to a 5-port layer-2 switch through their "outside"(Ethernet1/1) interfaces, each with an IP address of the form 192.168.1.x ...
1
vote
0
answers
88
views
Should my WAN Ethernet Port be in the WAN or LAN firewall zone with a PPPoE WAN Connection?
I have a zone-based firewall configuration with WAN, LAN, and LOCAL zones (LOCAL being the zone for the router itself).
My WAN connection is via a PPPoE modem (a DrayTek Vigor 130). It has a static IP ...
- 111
1
vote
0
answers
54
views
Configuring inter-VLAN routing and dynamic IP addressing via DHCP, on each of my VLANs in GNS3 witch PFSENSE [closed]
Good evening everyone, I am in the process of carrying out a computer network project based on the configuration and routing of VLAN networks. Here is my network topology and I have already done the ...
0
votes
2
answers
1k
views
DNS - DMZ or internal zone & firewall topology
I'm kind of new to networking. Suppose that all my VLANs have access to the web server and authoritative DNS server but only VLAN 40 has access to the Internet while VLANs 10, 20 and 30 do not have ...
Jun
0
votes
1
answer
177
views
Open port X becomes filtered after port-forwarding
There is a device with an ip address of 172.31.1.122 that is connected to a switch (Scalance 8008) and the switch is connecte to a router (scalance s615 which I cannot configure and has ip of 172.31.1....
- 101
0
votes
1
answer
168
views
Puppet on Forti os, Is it possible?
I basicaly wanted to know if it is possible to download and configure puppet-client on a fortigate to be able to push configuration manifests from the puppet-server ? I already know that some tools ...
- 3
1
vote
0
answers
53
views
Firewall not reverse translating NAT address in VyOS GNS3
I'm using two VyOS images as Firewalls in gns3, to which I have connected two routers, one from an inside network and another from an outside network. I configured NAT in both for the internal ...
- 11
1
vote
1
answer
929
views
My Fortinet Firewall shows 100Mbps (100%) bandwidth usage in the BD dashboard but Fortiview sources do not show much usage. Facing connectivity issue!
I am working with a Fortinet FG-60F firewall. It has 2 WAN sources and both have a maximum link speed of 100Mbps. Throughout the day, I am repeatedly getting downstream bandwidth spikes of 100Mbps+ on ...
1
vote
2
answers
1k
views
Problem with Configuring Selective DNAT for HTTP Traffic on Fortigate Firewall
I'm currently in the process of setting up a new Fortigate Firewall and have run into an issue while configuring DNAT. From what I understand, this is done through Virtual IPs in Fortigate. My goal is ...
- 11