[FW1] Possible interface problem

Ben Smith Mon, 11 Dec 2000 11:10:49 -0800

Question:  Have a sun box running 4.0.  We have a quad card and suddenly all 
traffic has stopped going out via our internal qe1.  Logs show nothing being 
accepted nor nothing being dropped.  We can ping the interface, but not the 
router outside the interface.  The router can not ping the interface card 
either.  Our network engineers insist the router is fine, up and 
functioning.  Router and firewall box are in the same room.  We are now into 
a fingerpointing session ( familiar, huh? )

When we perform a traceroute the route keeps attempting to go out the wrong 
interface even though we have a static route telling it to go out the qe1 
interface.

Syslogs show no abnormalities on the card and we have bounced both the box 
and the firewall. When the firewall is down symptoms do not change.

Our routes are as follows:


qe1 interface 233.60.99.1

router we are trying to get to is 233.60.99.66

netstat shows:

#

233.60.99.66         233.60.99.1           UGH      0      0
233.60.99.0          233.60.99.1           UGH      0      0
233.60.114.0         233.60.99.1           UGH      0      0
233.60.99.0          233.60.99.1           U        2      0  qe1






qe

default route 202.193.64.254 ( our internet router )


ipconfig -a shows:


lo0: flags=849<UP,LOOPBACK,RUNNING,MULTICAST> mtu 8232
        inet 127.0.0.1 netmask ff000000
hme0: flags=863<UP,BROADCAST,NOTRAILERS,RUNNING,MULTICAST> mtu 1500
        inet 233.60.199.10 netmask ffffff00 broadcast 233.60.199.255
        ether 8:0:20:86:39:dd
qe1: flags=863<UP,BROADCAST,NOTRAILERS,RUNNING,MULTICAST> mtu 1500
        inet 233.60.99.1 netmask ffffff00 broadcast 233.60.99.255
        ether 8:0:20:86:39:dd
qe3: flags=863<UP,BROADCAST,NOTRAILERS,RUNNING,MULTICAST> mtu 1500
        inet 207.193.64.1 netmask ffffff00 broadcast 207.193.64.255
        ether 8:0:20:86:39:dd
~
(Note we are not using qe0 - interface not shown )

tracerouting to 233.60.99.66 shows:

traceroute to 144.60.99.66 (144.60.99.66), 30 hops max, 40 byte packets
1  lynx3 (144.60.99.1)  0.364 ms !N *  0.239 ms !N



Can anyone shed any light on what might be wrong?  Maybe the port on the 
card is bad, but can't find anything in the syslog?

Thanks in advance

_____________________________________________________________________________________
Get more from the Web.  FREE MSN Explorer download : http://explorer.msn.com



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================
[FW1] Possible interface problem

Reply via email to
