3 Replies Latest reply on Dec 31, 2013 2:55 PM by sliedl

    Reconfigure to transparent mode

    jorge_coloma

      Hello,

       

      I have a firewall wich I configure in span mode to test the features. Now that I have tested all the features of the firewall, I want to reconfigure it in transparent mode. I have made the bridge group with two interfaces, and a default allow all rule, but It doesnt work.

       

      I think it's because the rules. Someone can give me wich rules configure the startup wizard by default when it's configured in transparent mode?

        • 1. Re: Reconfigure to transparent mode
          sliedl
          • What is the IP/mask of your client PC?
          • What is the default route on the client PC?
          • What is the IP/mask of the firewall's IP on the bridge?
          • What is the default route of the firewall itself?

           

          This issue most likely has to do with routing.

           

          Also, is this in VMWare or is it a physical machine?

          • 2. Re: Reconfigure to transparent mode
            jorge_coloma

            client any one in 10.10.10.x/24

            default route 10.10.10.180 (is on the external 0/0 ethernet part of the bridge)

            router has administrative ip address of 10.10.10.184 asigned to the bridge

            internal part of the bridge is asigned to 0/1 ethernet

            default route of the router 10.10.10.180

            • 3. Re: Reconfigure to transparent mode
              sliedl

              Is this in VMWare?

               

              To see the MAC addresses learned by the bridge run this command:

              $> ifconfig bridge0 addr

               

              You can try flushing all the learned MAC addresses from the bridge with this command:

              $> ifconfig bridge0 flushall

              You will also need to use 'arp -an' to investigate the ARP table on the firewall.  You will also have to use tcpdump to see how the traffic looks hitting the firewall and leaving the firewall.