Inbound and outbound rules

Ebizmalta
Comes here often

Inbound and outbound rules

Hi,

 

I am trying to access a web page with static IP, but browser shows connection time out,

 

i tried to ping the same ip, it shows request time out,

 

it seems like MX84 firewall is blocking the IP to access,

 

Do I need to setup any Inbound and outbound rules for it ?

what are those rules ?

 

Can someone help me with those ?

 

Thank you.

 

10 Replies 10
DarrenOC
Kind of a big deal
Kind of a big deal

Is this a fresh install?  Do you currently have any firewall rules defined?  By default all outbound connections are allowed unless you’ve specified otherwise 

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
Ebizmalta
Comes here often

HI @DarrenOC ,

 

Thanks for the response,

 

Yes this is fresh install for the server on meraki,

yes i see some firewall rules defined, I see some outbound rules defined in layer 3 and some port forwarding rules in layer 7.

 

But this static IP of the server is not mentioned in those rules .

 

Do i need to specify a port forward/outbound rule for  this static IP address.

 

Please help me to sort this out.

 

Thank you.

ww
Kind of a big deal
Kind of a big deal

You trying to access a web server that is on the lan side of the mx?

 

And from where do you try to access it?( also from the lan side or from the wan side)

Ebizmalta
Comes here often

I am trying to access ILO page of HP server, that static ip address is on LAN side of MX. 

Ebizmalta
Comes here often

I am trying to access it from a computer which is also in same network, Using that Static IP , we must be able to access the ILO console of HP server.

DarrenOC
Kind of a big deal
Kind of a big deal

So you’re accessing an internal IP on the same IP subnet.  Can you ping your default gateway?  Is the vlan Config correct on the uplink port to the server?  If you’re on the same subnet then this should just work, unless there’s a firewall rule blocking this.

 

Can you run a packet capture on the LAN side of the Mx to see what’s going on?

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
DarrenOC
Kind of a big deal
Kind of a big deal

So this is an internal server you’ve currently building which you wish to access from the outside of your network?

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
Ebizmalta
Comes here often

 

Yes it is internal server with internal ip address,

 

I am trying to access the web page of that server with static ip, 

 

Do i need to specify something in firewall to make this static ip to go on internet to access this web page.

 

Thank you

ww
Kind of a big deal
Kind of a big deal

It would be better to access it using a  meraki sts vpn or client vpn to your mx

Ebizmalta
Comes here often

We don't have any client VPN configured in Meraki now,

 

if i setup port forwarding ..does this works ?

Does firewall allow this ip address to access the web page ?

 

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels