Quantcast
Channel: All ScreenOS Firewalls (NOT SRX) posts
Viewing all articles
Browse latest Browse all 2577

Re: SSG 5 - get VIP to look for route in Untrust-vr

September 25, 2017, 1:18 pm
$
0
0

Hi

 

Here below is the debug flow basic. I have also attached a little more detailed config experpt.

1.1.1.2 external ip

2.2.2.2 SSG firewall

 

****** 472511.0: <Untrust/ethernet0/0> packet received [82]******
  ipid = 28685(700d), @0384c310
  packet passed sanity check.
  flow_decap_vector IPv4 process
  ethernet0/0:1.1.1.2/2398->2.2.2.2/20409,17<Root>
  no session found
  flow_first_sanity_check: in <ethernet0/0>, out <N/A>
  [ Dest] 95.route 1.1.1.2->2.2.2.1, to ethernet0/0
  self check, not for us
  chose interface ethernet0/0 as incoming nat if.
  flow_first_routing: in <ethernet0/0>, out <N/A>
  search route to (ethernet0/0, 1.1.1.2->10.238.135.227) in vr trust-vr for vsd-0/flag-0/ifp-null
  no route to (1.1.1.2->10.238.135.227) in vr trust-vr/0
  packet dropped, no route
****** 472513.0: <Untrust/ethernet0/0> packet received [82]******
  ipid = 29032(7168), @03826b10
  packet passed sanity check.
  flow_decap_vector IPv4 process
  ethernet0/0:1.1.1.2/2398->2.2.2.2/20409,17<Root>
  no session found
  flow_first_sanity_check: in <ethernet0/0>, out <N/A>
  [ Dest] 95.route 1.1.1.2->2.2.2.1, to ethernet0/0
  self check, not for us
  chose interface ethernet0/0 as incoming nat if.
  flow_first_routing: in <ethernet0/0>, out <N/A>
  search route to (ethernet0/0, 1.1.1.2->10.238.135.227) in vr trust-vr for vsd-0/flag-0/ifp-null
  no route to (1.1.1.2->10.238.135.227) in vr trust-vr/0
  packet dropped, no route
****** 472519.0: <Untrust/ethernet0/0> packet received [82]******
  ipid = 29812(7474), @03878b10
  packet passed sanity check.
  flow_decap_vector IPv4 process
  ethernet0/0:1.1.1.2/2398->2.2.2.2/20409,17<Root>
  no session found
  flow_first_sanity_check: in <ethernet0/0>, out <N/A>
  [ Dest] 95.route 1.1.1.2->2.2.2.1, to ethernet0/0
  self check, not for us
  chose interface ethernet0/0 as incoming nat if.
  flow_first_routing: in <ethernet0/0>, out <N/A>
  search route to (ethernet0/0, 1.1.1.2->10.238.135.227) in vr trust-vr for vsd-0/flag-0/ifp-null
  no route to (1.1.1.2->10.238.135.227) in vr trust-vr/0
  packet dropped, no route
Search
Viewing all articles
Browse latest Browse all 2577

Trending Articles

RAMAYAMPET Mandal Sarpanch | Upa-Sarpanch | Ward member Mobile Numbers Medak...

May 24, 2017, 2:00 am

लड़कियां सेक्स के दौरान क्यों करती है उह! आह!लड़कियां सेक्स के दौरान क्यों करती...

May 19, 2016, 1:54 am

Neem Baba Extra Questions Answer Class 6 English Poorvi

February 1, 2025, 5:19 am

Throw Back: 4×4 — Sikilitele (Ft Castro) Prod by JQ

March 5, 2015, 8:24 am

Rajasthan Board 10th Result 2016 Roll No wise & Name Wise

August 20, 2016, 5:13 pm

Lowe faces four theft charges

November 14, 2017, 6:52 pm

Practice Sheet of Right form of verbs for HSC Students

September 22, 2019, 11:40 pm

Mafia, Murder & Mayhem In The Motor City: Detroit Mob Hit Timeline (1937-2007)

December 7, 2016, 3:57 pm

The 10 Tennessee Cities With The Largest Black Population For 2021

December 21, 2020, 10:12 am

Materials Around Us Class 6 Worksheet Science Chapter 6

October 3, 2024, 5:20 am

デスクトップ ヒープの枯渇

January 18, 2018, 8:31 pm

Best Suvichar in Hindi |बेस्ट सुविचार |शुभ विचार हिंदी में

March 7, 2020, 11:19 pm

Kanulanu Thaake Lyrics and translation | Manam (2014)

May 9, 2014, 5:45 am

Korean Sex Porn Videos: XXX Videos & Free Porn Movies

May 30, 2025, 9:29 pm

Teen Shot In Miami Drive-By Dies From Injuries

August 8, 2011, 1:16 pm

Download: IQ Muzatasha feat Shy D & Pmj – Ulesi NiFertilizer Yamavuto

March 22, 2018, 7:23 pm

Mahakal Attitude Status

February 29, 2020, 9:52 am

Property developer set up cannabis factory to help pay off debts...

August 3, 2015, 2:29 am

July 11, 2015, 6:15 am

KB: How to troubleshoot issues when adding a Hyper-V host in System Center...

August 14, 2012, 10:05 am
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>