HPE Community
Operating System - HP-UX
1834397 Members
2575 Online
110067 Solutions
New Discussion

problem connecting to DMZ servers

 
Burhan Koni
Advisor

‎11-19-2003 07:54 PM

‎11-19-2003 07:54 PM

problem connecting to DMZ servers

Hi
I have 4 HP9000 servers all on the same subnet(172.16.0.0), I have problem sometimes in connect to servers in DMZ (212.14.224.0)or any site through the router, the problem cause is not known. the network engineer said the problem may be because multiple network cards on the server having IP's from the same subnet.

your help is highly appreciated
Burhan
0 Kudos
Reply
9 REPLIES 9
G. Vrijhoeven
Honored Contributor

‎11-19-2003 08:01 PM

‎11-19-2003 08:01 PM

Re: problem connecting to DMZ servers

Burhan,

I do not think it is possible to configure mutiple interfaces on the same subnet without APA software. Can it be that you have configured multiple ipadresses on the same interface card?

Gideon
0 Kudos
Reply
Elmar P. Kolkman
Honored Contributor

‎11-19-2003 08:03 PM

‎11-19-2003 08:03 PM

Re: problem connecting to DMZ servers

I can think of two things:
1) firewall between the DMZ and your other network. For instance, the port you connect to is defined by the service you use, but the port you come from may differ...
2) route settings on the DMZ servers. If your DMZ server has multiple network cards, they need to have good route settings to reach your internal network.

It also depends on what you mean by sometimes. Do you mean that it sometimes works and sometimes not for the same command?
Every problem has at least one solution. Only some solutions are harder to find.
0 Kudos
Reply
Burhan Koni
Advisor

‎11-19-2003 08:06 PM

‎11-19-2003 08:06 PM

Re: problem connecting to DMZ servers

Gideon,
each server has 3 network cards, the card has only one IP.

0 Kudos
Reply
Burhan Koni
Advisor

‎11-19-2003 08:11 PM

‎11-19-2003 08:11 PM

Re: problem connecting to DMZ servers

Guys,
sometimes I can connect without any problem, and other times without any change in the settings on the server or the routing on the router, the servers could not reach DMZ
0 Kudos
Reply
Elmar P. Kolkman
Honored Contributor

‎11-19-2003 08:12 PM

‎11-19-2003 08:12 PM

Re: problem connecting to DMZ servers

If you mean you have the same IP address on all cards, which would be interesting on a DMZ server, it would explain your problem I think...
If you mean one IP per card, I think you need to give more info on subnets, routes, etc.
Every problem has at least one solution. Only some solutions are harder to find.
0 Kudos
Reply
G. Vrijhoeven
Honored Contributor

‎11-19-2003 08:13 PM

‎11-19-2003 08:13 PM

Re: problem connecting to DMZ servers

Hi,

Can you show me the output of netstat -in of one of the servers?
If it only happens sometimes option 1 of Elmar can be th couse.


Gideon
0 Kudos
Reply
Burhan Koni
Advisor

‎11-19-2003 08:22 PM

‎11-19-2003 08:22 PM

Re: problem connecting to DMZ servers

here is the output
# netstat -in
Name Mtu Network Address Ipkts Opkts
lan2* 1500 172.16.0.0 172.16.1.25 3 3
lan1* 1500 172.16.0.0 172.16.1.27 192453 38421
lan0 1500 172.16.0.0 172.16.1.26 1536733 267220
lo0 4136 127.0.0.0 127.0.0.1 7253 7253
#
0 Kudos
Reply
G. Vrijhoeven
Honored Contributor

‎11-19-2003 09:20 PM

‎11-19-2003 09:20 PM

Re: problem connecting to DMZ servers

Burhan,

Could you check if
lan2* 1500 172.16.0.0 172.16.1.25 3 3
lan1* 1500 172.16.0.0 172.16.1.27 192453 38421
are up with ifconfig lan2

I guess both interfaces are down (*).

Gideon
0 Kudos
Reply
Burhan Koni
Advisor

‎11-19-2003 09:57 PM

‎11-19-2003 09:57 PM

Re: problem connecting to DMZ servers

OK, I disabled these two cards and rebuild the routing table. after that it can connect through the router. but I know the problem will appear again.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.