DrayTek UK Users' Community Forum
Help, Advice and Solutions from DrayTek Users
Vigor 2926AC, DMZ and Hot Standby
- orange79
- Topic Author
- Offline
- New Member
Less
More
- Posts: 3
- Thank you received: 0
31 Aug 2019 08:29 #94902
by orange79
Vigor 2926AC, DMZ and Hot Standby was created by orange79
Hi all,
Please excuse my bad English…
I bought 2 VIGOR 2926 AC router for my network.
My network is :
WAN with 6 public IP
LAN on port 2, IP 192.168.1.x (LAN1), no DHCP (I have a DHCP server on my LAN) - VLAN0, P2, P3, P4, SSID1.
DMZ on port 1 (DMZ port), IP 192.168.2.X, no DHCP, P1.
Guest LAN (Wireless only), IP 192.168.3.X (LAN3), with DHCP, VLAN1, SSID 2.
VPN SSL, IP 192.168.4.X, with DHCP (LAN4).
Inter-LAN routing is allowed between LAN, VPN SSL and DMZ (LAN1, LAN4, DMZ)
Guest Lan is only allowed to access to Wan.
I open some ports to access different servers (Exchange on LAN (80/443), Server on DMZ (80/443/25), camera on DMZ (550/8000), Alarm on DMZ (50000/52000)) from the public IP Wan.
For examples :
Comment : Exchange-SRV
WAN interface : WAN1
IP Alias : 215.144.25.147
Source IP : Any
Private IP : 192.168.1.10
TCP/UDP : 80, 443 are open.
Comment : Exchange-SRV
WAN interface : WAN1
IP Alias : 215.144.25.146
Source IP : Any
Private IP : 192.168.2.8 (on DMZ)
TCP/UDP : 25, 80, 443, 22 are open
I also create object services and object IP to create firewall rules (LAN network, DMZ network, Exchange server, HTTP, HTTPS, etc...)
I also create firewall data rules to allow access to the opened ports.
I have 2 problems.
1st : I'm unable to joind DMZ from the LAN or from the WAN. I' don't know why. I tried to open all port and services, but it's impossible to join DMZ
Do you have any idea of what i'm doing wrong ?
2nd : Hot-standby is ok, but router crash when I link DMZ port to the secondary router. I don't understand why.
I turn the 2 routers on.
I link the LAN on port 2 on each router ==> The router/network work !
I link the WAN on port WAN1 on each router ==> It work !
I link the DMZ port on port 1 on primary router ==> It work !
I link the DMZ port on port 1 on the secondary router ==> All routers crash, i'm not be able to access to anything (neither router management, nor LAN).
Do you have any idea of what I'm doing wrong ?
Thank you for your help.
Please excuse my bad English…
I bought 2 VIGOR 2926 AC router for my network.
My network is :
WAN with 6 public IP
LAN on port 2, IP 192.168.1.x (LAN1), no DHCP (I have a DHCP server on my LAN) - VLAN0, P2, P3, P4, SSID1.
DMZ on port 1 (DMZ port), IP 192.168.2.X, no DHCP, P1.
Guest LAN (Wireless only), IP 192.168.3.X (LAN3), with DHCP, VLAN1, SSID 2.
VPN SSL, IP 192.168.4.X, with DHCP (LAN4).
Inter-LAN routing is allowed between LAN, VPN SSL and DMZ (LAN1, LAN4, DMZ)
Guest Lan is only allowed to access to Wan.
I open some ports to access different servers (Exchange on LAN (80/443), Server on DMZ (80/443/25), camera on DMZ (550/8000), Alarm on DMZ (50000/52000)) from the public IP Wan.
For examples :
Comment : Exchange-SRV
WAN interface : WAN1
IP Alias : 215.144.25.147
Source IP : Any
Private IP : 192.168.1.10
TCP/UDP : 80, 443 are open.
Comment : Exchange-SRV
WAN interface : WAN1
IP Alias : 215.144.25.146
Source IP : Any
Private IP : 192.168.2.8 (on DMZ)
TCP/UDP : 25, 80, 443, 22 are open
I also create object services and object IP to create firewall rules (LAN network, DMZ network, Exchange server, HTTP, HTTPS, etc...)
I also create firewall data rules to allow access to the opened ports.
I have 2 problems.
1st : I'm unable to joind DMZ from the LAN or from the WAN. I' don't know why. I tried to open all port and services, but it's impossible to join DMZ
Do you have any idea of what i'm doing wrong ?
2nd : Hot-standby is ok, but router crash when I link DMZ port to the secondary router. I don't understand why.
I turn the 2 routers on.
I link the LAN on port 2 on each router ==> The router/network work !
I link the WAN on port WAN1 on each router ==> It work !
I link the DMZ port on port 1 on primary router ==> It work !
I link the DMZ port on port 1 on the secondary router ==> All routers crash, i'm not be able to access to anything (neither router management, nor LAN).
Do you have any idea of what I'm doing wrong ?
Thank you for your help.
Please Log in or Create an account to join the conversation.
- orange79
- Topic Author
- Offline
- New Member
Less
More
- Posts: 3
- Thank you received: 0
02 Sep 2019 12:23 #94903
by orange79
Replied by orange79 on topic Re: Vigor 2926AC, DMZ and Hot Standby
I think i know where the problem is : Inter-lan routing is not working.
I checked DMZ Under LAN1, but when I try to send a packet in "route Policy diagnosis", the router say "The packet was dropped, inter-lan routing is not enabled"...
Now, I Don't know what to do. Any idea ?
Thanks.
I checked DMZ Under LAN1, but when I try to send a packet in "route Policy diagnosis", the router say "The packet was dropped, inter-lan routing is not enabled"...
Now, I Don't know what to do. Any idea ?
Thanks.
Please Log in or Create an account to join the conversation.
Moderators: Chris, Sami
Copyright © 2024 DrayTek