Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1437
Views
0
Helpful
3
Replies

Telnet from server to server on same subnet

john-guy
Level 1
Level 1

‎03-06-2002 10:21 AM - edited ‎03-08-2019 09:59 PM

I have a segment off a PIX firewall that will not allow telnet between two servers. Both servers are on the same segment, they can ping each other but are not able to telnet to each other. Since both servers are on the same subnet the PIX is not involved, correct?? Does a PIX control traffic originating from the same segment? Any ideas?

Labels:
0 Helpful
3 Replies 3

johturner
Level 1
Level 1

‎03-06-2002 12:30 PM

Check the subnet mask on btoh systems.

Check the arp cache then compare MAC addresses, make sure that the system responding to the ping is the system you think it is, i.e. another system configured with a duplicate ip address.

DHCP environment??

creative IP address management???

If its unix is inetd running can you get to other services on the system.

ps -ef|grep inetd

are you in a switched environment?

Good luck

0 Helpful

john-guy
Level 1
Level 1
In response to johturner

‎03-06-2002 12:56 PM

For some reason when I ping from one unix server to another unix server which is on the same subnet/dmz1 the PIX responses with its mac address. So when I ping from S1 to S2 and then do a arp -a S1 or S2, the server has the mac address of the PIX. Since they are on the same subnet which is off a PIX shouldn't the mac of the server and not the PIX resolve? It appears that the traffic is entering the PIX and then returning to its subnet??? Yes its a switches environment.

0 Helpful

mhussein
Level 4
Level 4

‎03-06-2002 01:26 PM

Try disabling arp-proxy on the PIX interface:

"sysopt noproxyarp (interface name)"

then clear the arp cache.

Note that doing so might disrupt normal operations on all interfaces, so ...

Regards ...

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents