Thanks very much for this, Kevin I will look into this and post back findings.
Kevin Murphy-10 wrote: > > > Hi, > I am running Endian 2.4.1 under WMware ESXi and you have to enable > "promiscuous mode" and I think "forged transmit" on the virtual network > switch. This enables multiple IP addresses to be associated with one MAC > I think. I guess you will have some similar setting in KVM. > Kevin > >> Date: Fri, 21 Oct 2011 10:46:04 -0700 >> From: r...@edisongroup.net >> To: efw-user@lists.sourceforge.net >> Subject: Re: [Efw-user] Port forwarding on RED multi-IP >> >> >> >> Thanks for the offer. Somewhat of a breakthrough last night. Am running >> EFW >> as a virtual machine under KVM and it seems that somehow packets are not >> actually making it to the EFW on the secondary IPs, seems something to do >> with the virtualization configuration although it is the first time I've >> seen this and have run a variety of OSs under the same setup. >> >> EFW 2.4.1 definitely had the issue with not forwarding traffic to any but >> the primary IP running directly on hardware which is why we switched to a >> virtualized setup. That particular installation has been replaced so I >> don't >> have an example to show on that one. >> >> Will pursue this from the virtualization side and post back here what I >> find. >> >> Thanks for the input. >> >> >> Kenneth Lundström wrote: >> > >> > If needed we could use Teamviewer and you can show your configuration, >> > >> > >> > Kenneth >> > >> >> Thanks, >> >> >> >> I would be extremely interested in what version you are running and >> what >> >> your port forwarding configuration is. I have spent many hours with >> this >> >> and >> >> have not been able to get any but the first / primary IP assigned to >> the >> >> red >> >> interface to forward any traffic to an internal IP. >> >> >> >> I am configuring rules as follows: >> >> >> >> Port forwarding / Nat rule: Access from type Any, Target: have tried >> any >> >> uplink as well as selecting the specific red IP desired. Any uplink >> works >> >> only on the primary IP. >> >> >> >> Filter policy is either allow or allow with IPS. >> >> >> >> Services are typically a single TCP port. >> >> >> >> Translate to: IP , DNAT policy: NAT. >> >> >> >> Insert IP: internal IP of server to be forwarded to, Port/Range: >> internal >> >> port to be forwarded to. >> >> >> >> >> >> Any advice or input would be greatly appreciated. >> >> >> >> >> >> >> >> >> >> Kenneth Lundström wrote: >> >>> In what way can't you get it to work? >> >>> >> >>> I have at the moment two Endian running with maybe 15 RED IP:s on >> both >> >>> and can forward from whatever IP to whatever internal address I like. >> >>> >> >>> Please describe what you have done and we might be able to help you. >> >>> >> >>> >> >>> Kenneth >> >>>> Dear All, >> >>>> >> >>>> This has been discussed before - I have been using Endian for years >> and >> >>>> for >> >>>> the first time attempted to configure a red interface with multiple >> >>>> IPs. >> >>>> I >> >>>> have tried many configurations to get this to work both in version >> >>>> 2.4.1 >> >>>> and >> >>>> version 2.3. >> >>>> >> >>>> Would greatly appreciate any input on how to get ports forwarded >> from >> >>>> additional red IPs -- I can only get the primary red IP to forward >> any >> >>>> traffic. >> >>>> >> >>>> Thanks. >> >>> >> >>> >> ------------------------------------------------------------------------------ >> >>> The demand for IT networking professionals continues to grow, and the >> >>> demand for specialized networking skills is growing even more >> rapidly. >> >>> Take a complimentary Learning@Cisco Self-Assessment and learn >> >>> about Cisco certifications, training, and career opportunities. >> >>> http://p.sf.net/sfu/cisco-dev2dev >> >>> _______________________________________________ >> >>> Efw-user mailing list >> >>> Efw-user@lists.sourceforge.net >> >>> https://lists.sourceforge.net/lists/listinfo/efw-user >> >>> >> >>> >> > >> > >> > >> ------------------------------------------------------------------------------ >> > The demand for IT networking professionals continues to grow, and the >> > demand for specialized networking skills is growing even more rapidly. >> > Take a complimentary Learning@Cisco Self-Assessment and learn >> > about Cisco certifications, training, and career opportunities. >> > http://p.sf.net/sfu/cisco-dev2dev >> > _______________________________________________ >> > Efw-user mailing list >> > Efw-user@lists.sourceforge.net >> > https://lists.sourceforge.net/lists/listinfo/efw-user >> > >> > >> >> -- >> View this message in context: >> http://old.nabble.com/Port-forwarding-on-RED-multi-IP-tp32694429p32698079.html >> Sent from the efw-user mailing list archive at Nabble.com. >> >> >> ------------------------------------------------------------------------------ >> The demand for IT networking professionals continues to grow, and the >> demand for specialized networking skills is growing even more rapidly. >> Take a complimentary Learning@Cisco Self-Assessment and learn >> about Cisco certifications, training, and career opportunities. >> http://p.sf.net/sfu/cisco-dev2dev >> _______________________________________________ >> Efw-user mailing list >> Efw-user@lists.sourceforge.net >> https://lists.sourceforge.net/lists/listinfo/efw-user > > ------------------------------------------------------------------------------ > The demand for IT networking professionals continues to grow, and the > demand for specialized networking skills is growing even more rapidly. > Take a complimentary Learning@Cisco Self-Assessment and learn > about Cisco certifications, training, and career opportunities. > http://p.sf.net/sfu/cisco-dev2dev > _______________________________________________ > Efw-user mailing list > Efw-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/efw-user > > -- View this message in context: http://old.nabble.com/Port-forwarding-on-RED-multi-IP-tp32694429p32699604.html Sent from the efw-user mailing list archive at Nabble.com. ------------------------------------------------------------------------------ The demand for IT networking professionals continues to grow, and the demand for specialized networking skills is growing even more rapidly. Take a complimentary Learning@Cisco Self-Assessment and learn about Cisco certifications, training, and career opportunities. http://p.sf.net/sfu/cisco-dev2dev _______________________________________________ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
