LAN ---> switch ---> firewall ---> router ---> Internet
(172.19.29.x) ^ (int : 172.19.29.x)
(NAT | ext : 202.190.160.x)
First of all, I have a network with such configuration shown as above.
Internal LAN (HQ) with IP address 172.19.29.x, and all internet connection must reach to firewall internal IP address (172.19.29.10), forward to external IP address (220.127.116.11), to router and out to Internet. Meanwhile, there is a branch LAN with IP address (192.168.18.x), connect to HQ LAN via leased line. HQ LAN and branch LAN can communicate between each other without any problem.
Firewall is installed in Sun Machine which have Quad Ethernet card. Hme0 set as 202.190.160.x and qfe0 set as 172.19.29.x.
By set up gateway (172.19.29.10), NAT and DNS server, HQ LAN can access Internet successfully, but branch (192.168.18.x) can not (same setting apply as HQ). Branch pc can ping to 172.19.29.10 but fail to ping 18.104.22.168 (HQ can ping both). From firewall machine, i fail to ping 192.168.18.x network. When I do traceroute to 192.168.18.x, it stop at router (172.19.29.1).
What is the problem? How to solve it?
Thank you very much.