I have a PC in VLAN 242, VLAN 242(management server vlan) is only routed on firewall. The Switch/Router Management should routed in firewall too, to prevent that users can connect to the router e.g. . Router management is in VLAN 2. On the router i make policy based routing. So all traffic from the ip range 10.1.2.0 /24 (VLAN2) go to Firewall.
I checked with ping and traceroute everything "goes" like i want. when i make a telnet it is not working.
I change the firewall and take a router. it is not working too.
Have anyone an idea...I don't know why this works so strange...
Router or Firewall. on switch inter-vlan routing
On switch-L3 or router which i want manage.
route-map routing_management, permit, sequence 10
ip address (access-lists): tt
ip next-hop 10.1.2.20
Policy routing matches: 7116 packets, 665966 bytes
Extended IP access list tt
10 permit ip 10.1.2.0 0.0.0.255 any (596 matches)
PS: i could do the management server in the same subnet, but for other locations which i manage from this server i have the same problem.
And when i don't use policy-based routing, the Switch-L3/router would use this default gateway and the firewall would say "spoofing" wrong ip on this interface..
thanks in advance