Network routing
Hi!
Our company have two locations. Each location have two routers. Let say, Location1 have network 192.168.1.0 with routers 192.168.1.9 and 192.168.1.10.
Location2 have network 192.168.2.0 with routers 192.168.2.9 and 192.168.2.10.
All routers are connected to internet. Router 192.168.1.9 and 192.168.2.9 are default gateway for their network. Routers 192.168.1.10 and 192.168.2.10 are just for VPN connection between this two sites. Router 192.168.1.9 have static route for network 192.168.2.0 to router 192.168.1.10 and router 192.168.2.9 have static route for network 192.168.1.0 to 192.168.2.10. The problem is that pings to IP on second network doesn't work. What could be the problem? Do I need any other routes. When I try tracert from PC on network 192.168.1.0 to PC on network 192.168.2.0 it shows me that it go on router 192.168.1.9 then on 192.168.1.10 and on 192.168.2.10 but then I don't get any more answers.
Thank you for any tips!
Regards
Tomaz
Software/Hardware used:
Software/Hardware used:
ASKED:
July 27, 2006 4:39 PM
UPDATED:
July 28, 2006 12:45 PM
Answer Wiki:
I take it your routers are inline and not redundant Internet connections. Would you paste the configurations from each router to your question (edited of course, remove your other network IP addressing and usernames/passwords) so we can review them to help?
To see all answers submitted to the Answer Wiki: View Answer History.
Your hosts are using 1.9 and 2.9 as default gateways. Therefore they will send everything to them. It looks like 1.9 and 2.9 are sending back an ICMP redirect telling your host(s) to send to 1.10 and 2.10 properly. I would only guess that the far-side machine that you are trying to ping isn’t responding to the ICMP redirect from it’s .10 and that’s why you aren’t getting a response.
You should add a static route to your hosts pointing to the other network using the .10 as the gateway. That will help with the network load of all the ICMP redirects and ensure that the hosts can communicate with each other.
Hi,
Make sure your machine firewall is not blocking icmp. XP default configuration will block them.
Do you able to map network share on other network? i.e. 2.x machines map to 1.x server or other way around.
It is hard for us to guess without seeing actual configuration . We can only suggest possible factors of problem. Have you try to sniff with ethereal/wireshark on your switch as weel as target machine.
Hope that will help you a bit.
The best way would be to put a static route on each machine pointing to the other network through the .10 gateway. This would eliminate bounced traffic between the routers. You can accomplish the same thing by putting a static route on the .10 routers pointing at the local network through the .9 routers.
The idea is the local default gateway routes ALL traffic to other networks, including incoming traffic.
wsbtech is right, the only way for your computers to properly send icmp packet using the .10 routers is to add a static route pointing to the remote site. If you’re using windows DO NOT use a secondary default gateway as they will start comflicting each other. Don’t forget to they all machines to allow icmp packets from your trusted networks.
Hi first chance I have had to log into mail today. The only thing I would add is to make sure the remote route the you atrying to reach as static routes pointing back as the icmp will travel one way and not cone back.