please guide me .how i can make my internal lap ip address (ex.10.1.x.x) acessiable to spoke location ip address range 10.240.x.x in hub spoke network topology . since 10.1.x.x is hub location lan address. currently i'm able to ping from spoke router to my hub router lan ip address where as from my hub router,i can reaches to my internal lan as well as spoke router.. when i traceroute from spoke router .i find .i am able to reach upto hub router only .after that i die. plz suggest me .what should i do. ? thanks in advance.
in short i would like to say that . from spoke router ,i am able to ping hub lan ip .then after there is firwall inside where our lan is working. my firewall is unreachable from spoke router . form my syamatic server (inside my lan ) i am able to ping spoke router lan ip .
I am working in a HeadOffice of an organisation. having HUB-SPOKE network topology having several branches in remote area. MPLS VPN Link is given by the ISP. . i have put on symatice server inside the organisation having different lan ip address . series is 10.1.x.x (my lan ip series)where as on HUB (headoffice vpn router)lan ip address is 10.240.x.x and remote branches address is 10.240.y.y . i'm able to ping the branches ip address and also symantic server ip address 10.1.x.x from hub router. but i'm unable to ping form branches router. when i trace it .it come to my hub router lan after that it die. there is firewall after that having ip address 10.240.x.(x+1) and lan ip address is 10.1.x.x . please guide me .how i can make my symantic server able to ping from branches.since my symentic server is pinging to hub lan ip address and spoke lan ip also by pass the firewall.Plz reply .thankx in advance. if there is issue in firwall than reply me what i should do on it.as my 10.1.x.x is passing it. i'm need ur help to over come this issue. thanx.
i am sure the problem in your firewall, because you can ping from server to branches but they cannot , it is the default firewall behavior, from lower security level to high not allowed but higher to low is allowed.
see the diagram, is it , or any modification
if possible then post the hub router and firewall config
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...