SYSTEM WARNING: 'date_default_timezone_get(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone.' in '/usr/share/mantis/www/core.php' line 264
| Anonymous | Login | 2021-12-07 03:05 UTC |  |
| Main | My View | View Issues | Change Log | Roadmap |
| View Issue Details [ Jump to Notes ] | [ Issue History ] [ Print ] | ||||||||||
| ID | Project | Category | View Status | Date Submitted | Last Update | ||||||
| 0004470 | Endian Firewall | Network related (VPN, uplinks) | public | 2012-10-19 10:03 | 2012-12-04 04:27 | ||||||
| Reporter | mhLearn | ||||||||||
| Assigned To | |||||||||||
| Priority | normal | Severity | minor | Reproducibility | always | ||||||
| Status | new | Resolution | open | ||||||||
| Platform | OS | OS Version | |||||||||
| Product Version | 2.5 | ||||||||||
| Target Version | Fixed in Version | ||||||||||
| Summary | 0004470: Inter-zone Traffic And Policy Routing Issue | ||||||||||
| Description | Hi, Not sure if this is a bug or it was supposed the way on version 2.5.1. Traffic from Orange zone to Green zone on open ports was failed when Policy Routing was applied to Orange zone too. By just setting up a rule on Inter-zone Traffic, where Orange -> Green, <ports> the traffic would be dropped, as logged in firewall log as "ZoneFW.Drop" To solve this, do following, 1. Setup Static Routing, and enable it Source Network: <Orange Zone Net IP/CIDR> Destination Network: <Green Zone Net IP/CIDR> Route Via -> Static IP : <Green Zone Gateway IP> 2. Setup Inter-zone Traffic, and enable it Orange -> Green, <ports> 3. Apply the Policy Routing that you want Doesn't matter of the steps sequence, once all setup properly, it would work. | ||||||||||
| Additional Information | In my case, Endian Firewall was setup with BLUE, ORANGE and GREEN Zones. The Policy Routing was setup to divert all traffic from ORANGE and BLUE zone to use 2nd uplink connection, where GREEN zone was using main uplink card. | ||||||||||
| Tags | inter-zone traffic, policy routing | ||||||||||
| Attached Files | |||||||||||
 Relationships |
|
 Relationships |
|
Notes |
|
| There are no notes attached to this issue. |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2012-10-19 10:03 | mhLearn | New Issue | |
| 2012-12-04 04:27 | mhLearn | Tag Attached: inter-zone traffic | |
| 2012-12-04 04:27 | mhLearn | Tag Attached: policy routing | |
|
Issue History |
| Copyright © 2000 - 2012 MantisBT Group |
 |