[ previous ] [ next ] [ threads ]
 From:  "Chris Buechler" <cbuechler at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Routing / default route any known problems?
 Date:  Thu, 13 Sep 2007 14:04:05 -0400
On 9/13/07, Brieseneck, Arne, VF-Group <Arne dot Brieseneck at vodafone dot com> wrote:
> Hi all,
> I have two monowalls running connected via the WAN interface to a wan
> network one called
> DMZFW ( gw and and
> FEWIMAXFW ( gw and
> The DMZFW has a static route to the network via
> NATing is disabled (pure routing / firewalling)
> In all three LANs are SSH servers.
> I can successfully open ssh connections from WAN towards both LAN SSH
> servers
> I can successfully open ssh connection from every LAN SSH server to the
> WAN SSH server
> I can successfully hop from one LAN-SSH-server via the WAN-SSH-server to
> the other one
> But:
> I can not SSH from one LAN to the other. ==>WHY?
> When I put logging on I see incoming traffic passing the other firewall
> green.
> I even can not ping from one LAN to the other (if I enable it in the FWs
> I see only permitted traffic but no response)
> Could it be that there is a routing issue in monowall?

Only if you created one (i.e. improper use or lacking of static routes).

Since it's going out, my first guess is the lack of a return route on
the destination firewall. It's almost certainly an incorrect or
missing static route somewhere.