Howdy, Stranger!

It looks like you're new here. Sign in or register to get started.

Can't ping devices behind X0/X7 (pings forwarded but no reply back)

HealthhubHealthhub Newbie ✭
edited December 2020 in Entry Level Firewalls

Hi all,

I need some help I have setup a TZ500 firewall with a static IP for X0 as 10.5.64.1/255.255.248.0 and X7 as 192.168.250.2

I have a access rule allowing all traffic from X0 to X7 and vice versa and a icmp rule both ways

I have one laptop directly to port X0 with ip: 10.5.64.3/255.255.248 DG 10.5.64.1 and another laptop to X7 as 192.168.250.1/255.255.255.252 with DG as 192.168.250.2

I am able to ping both X0 and X7 interface ip's Eg. pc on X0 can ping interface X7 (192.168.250.2) and vice versa

all traffic is flowing and i even tested installing a openssh server and connecting to the other pc

i have ping enabled on both x0 and x7 interface

My problem is i can't ping PC1 to PC2 when i do packet capture it shows the packets as forwarding but no reply from the PC. So PC1 does not ping PC2

Any help or advice would be appreciated


Action-

>Took a remote session

>X0 IP : 10.5.64.1

>X7 IP : 192.168.250.2

>Device connected to X0, IP : 10.5.64.3

>Device connected to X7, IP : 192.168.250.1

>Checked the Access rules, LAN to Hospital and Hospital to LAN, everything is allowed

>Ping to both devices from firewall is successful

>Ran a packet capture, pings were getting forwarded from X7 to X0 with no reply back

>Tested the other way around, pings getting forwarded from X0 to X7, with no reply back

>Ping to the X0 gateway IP 10.5.64.1 from the device 192.168.250.1 is successful

>Ping to the X7 gateway IP 192.168.250.2 from the device 10.5.64.3

>Created access rules, Hospital and LAN and LAN to Hospital for specific source and destination IPs of devices, no go

>Customer will go on site and call back if further assistance is required 

Category: Entry Level Firewalls
Reply

Best Answers

  • CORRECT ANSWER
    SaravananSaravanan Moderator
    Accepted Answer

    Hi @HEALTHHUB,

    Thank you for visiting SonicWall Community.

    We have often seen such scenarios and we were focused to check the default gateway on the devices that are connected to X0 and X7 interfaces along with windows firewall or client AV running on the end devices needs to be disabled to test the communication.

    In your case, could you please ensure the default gateway for the devices connected behind X0 is X0 interface IP 10.5.64.1 and devices connected behind X7 is X7 interface IP 192.168.250.2? For testing, please disable the windows firewall and client AV on the end devices to check if the communication is not halted.

    Regards

    Saravanan V

    Technical Support Advisor - Premier Services

    Professional Services

Answers

  • Hi Everyone thank you for the comments i was able to fix it! I disabled all windows firewall and made sure that icmp ping was enabled both inbound and outbound and it is pinging now. Thank you @Saravanan and @Ajishlal

  • Awesome @HEALTHHUB. Glad to hear you are all set.

    Regards

    Saravanan V

    Technical Support Advisor - Premier Services

    Professional Services

Sign In or Register to comment.