Home » Kerio User Forums » Kerio Control » Local routed networks not accessible
  •  
ipsys

Messages: 32
Karma: 2
Send a private message to this user
if i have two subnets - one directly connected to kerio, the other is routed via ip in the same subnet as the kerio, the routed network is unable to access hosts in the kerio subnet.

eg: kero = 192.168.0.254/24
routed subnet 192.168.1.0/24 via 192.168.0.253

192.168.1.1 cannot reach 192.168.0.1 - its as if its being blocked by kerio.

there is no log of the communication. it just doesnt work. we have the default 'allow local/trusted to local/trusted' traffic rule. and when 'testing' the traffic rules, it indicates the traffic should fall within the default local rule.

any ideas? more information can be provided

thanks in advance ..
  •  
Rome

Messages: 14
Karma: -3
Send a private message to this user
I think if you have the Kerio network on the LAN interface and routed network
connected to the WAN interface, you may need to make sure traffic is routed via a static route first in the routed subnet to the correct interface IP (eg: WAN), then allow 2 traffic rules to communicate inbound and outbound from and to the Kerio Lan Interface and from and to the routed subnet.

Also you need to make sure that the service is set to any

Afterwards, test by pining from the routed network to the WAN interface then the Lan Interface then the Host on Kerio Lan Segment
  •  
ipsys

Messages: 32
Karma: 2
Send a private message to this user
the routing (and traffic) is all local (via the LAN).

the LAN interface ->
https://preview.ibb.co/m6EamJ/Screen_Shot_2018_05_16_at_1_06_28_pm.png

the route (local, via LAN)
https://preview.ibb.co/d45vLd/Screen_Shot_2018_05_16_at_1_11_24_pm.png


i test the firewall rules
https://image.ibb.co/eO5C0d/Screen_Shot_2018_05_16_at_1_11_14_pm.png

https://preview.ibb.co/gA7QLd/Screen_Shot_2018_05_16_at_1_05_54_pm.png

but as you can see, it doesnt work.

https://image.ibb.co/c3v1ty/Screen_Shot_2018_05_16_at_1_14_36_pm.png


prior to kerio control was a fortigate, and this worked with no issues.
  •  
ian.bugeja

Messages: 92
Karma: 8
Send a private message to this user
Hi

Was a support ticket opened please for this issue? If yes what is the #


Thanks & Regards

Ian Bugeja
GFI Software
  •  
ipsys

Messages: 32
Karma: 2
Send a private message to this user
no support ticket was opened.
  •  
pp

Messages: 8
Karma: 1
Send a private message to this user
I have the same problem - static routing does not work in Kerio Control
  •  
ipsys

Messages: 32
Karma: 2
Send a private message to this user
Case# GFI-180601-641418

from kerio suport I was told that this traffic does not pass the kerio.

In my screenshots above, the traffic passes the kerio - the 'test of traffic rules' clearly indicates this - at the same time it passes kerio, the connection is dropped, but not logged anywhere.

i have tried disabling all services and adding ip based traffic rules, but no matter what i try local communication continues to be blocked (or not forwarded) by this device.

please, what am i supposed to do to make this work as expected?
Previous Topic: windows 10 v1803 killed Kerio Vpn connector
Next Topic: The Kerio Control Web Filter has been deactivated
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Mon Nov 19 13:03:35 CET 2018

Total time taken to generate the page: 0.95821 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.