Ronald Cotoni a écrit :
> I am having issues with a NetScreen ISG 2000 device. I have
> configured it to the point where I can ping each of the IP's on all of
> the interfaces assigned to the ISG 2000 device. I can even
> ping/telnet to the gateway on the other side of the ISG 2000. I
> cannot go further than the gateway. I am not running OSPF or any
> other routing protocols on the device. I do utiliaze a vlan on the
> internal side of the device. It seemingly works, as I can ping the
> gateway of the ISG. I can also ssh into the server behind the ISG
> 2000. There are some static routes on this device. Others have
> suggested it is my Policies (which is set to default-permit-all) or
> some route I am not setting properly. Do you have any ideas where the
> problem is without looking at our network diagram? I am not even sure
> if this is the proper place to ask about this. I am just totally
> stumped on this and never setup a device like this before.
>
do you have a default route on your device ?
routing is one of the first check in the packet flow analysis, so if
there is no route, the box won't check for the policy.
check "get route ip 1.2.3.4" where 1.2.3.4 is the IP you'd like to reach
behind the ISG.
> ------------------------------------------------------------------------
_______________________________________________
nn mailing list
nn@...
http://www.compsoc.com/cgi-bin/mailman/listinfo/nn
