[Cialug] Firewall question
David Champion
dchamp1337 at gmail.com
Wed Mar 8 11:39:16 CST 2017
I think you're making things a bit more complex by running another layer of
NAT.
I'd recommend doing NAT and DHCP on the firewall, and running the wifi
router/ap's in AP mode, unless you have a specific reason you want the
clients on the different AP's to be isolated.
For troubleshooting... I'd remove the router/ap's all together, and just
test modem->firewall->client to see if you have your firewall working.
In your example above you said the inside of the firewall was
192.168.9.254, but the inside of your AP/Router's network is 192.168.9.1.
What is the WAN interface of the Router set to? What is the default route
on the Router? You should have something like this if you want it to work:
Internet -> modem (assuming Bridged?) -> firewall public WAN IP -> NAT ->
firewall LAN IP 10.0.0.1 -> Router/AP WAN 10.0.0.2 -> NAT -> Router/AP LAN
192.168.9.1 -> Client 192.168.9.100
>From the client there, you'd try to ping the Router's WAN IP... if that
works try the firewall LAN IP, then the Firewall WAN IP, then something on
the internet.
Does that make sense?
-dc
On Wed, Mar 8, 2017 at 11:01 AM, Paul Gray <gray at cs.uni.edu> wrote:
> On 03/08/2017 10:39 AM, Tom Sellers wrote:
>
>> That information was sent yesterday at 3:15 PM. I see it in my email
>> string. Do you want me to resend?
>>
>
> I have your message from 1:36pm in my inbox, but none from 3:15. I also
> don't see it in the archives.
> http://cialug.org/pipermail/cialug/2017-March/date.html
>
>
> -Paul
>
> _______________________________________________
> Cialug mailing list
> Cialug at cialug.org
> http://cialug.org/mailman/listinfo/cialug
>
More information about the Cialug
mailing list