Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

FWSM - Servers with multiple interfaces issue...

I have a server deployed as indicted on the logical drawing (FWSM config attached also). Ping works to both interfaces, telnet works to the "data" interface, but fails to the "mgt" interface. The servers default route is forcing the telnet packet received on the "mgt" interface to return on the "data" interface, which is causing the FWSM to deny it. The log message is documented on the drawing. Is there a FWSM configuration that would allow this scenario? The FWSM is in single context, routed mode at v2.3.2

2 REPLIES
Bronze

Re: FWSM - Servers with multiple interfaces issue...

Community Member

Re: FWSM - Servers with multiple interfaces issue...

I think problem is routing in server, telnet packets comming from VLAN107, but leaving to default gateway in VLAN102, and statefull firewall blocks this packets (log entry confirms that).

Solution is policy routing on server (Linux supports this with 'ip' command, I have no idea about MS Windows ....).

235
Views
0
Helpful
2
Replies
CreatePlease to create content