Solved

Netgear FVM318 bounce ping requst

Posted on 2009-07-10
10
452 Views
Last Modified: 2012-05-07
Our Netgear router FVM318 with firmware 1.2 (seem to be the latest one) is configured to allow ping requsts on the WAN. (the box is enabled for this in the config).

But I am unable to ping the public IP from outside, and nothing appears in the security log with my IP as source adress so it does not seem to log theese attempts.

I can successfully ping the gateway configured in the router so the ping traffic seems to work all the way from me to this point, but not the last jump to the router.

Any ideas?
0
Comment
Question by:Martin_Radbo
  • 6
  • 4
10 Comments
 
LVL 16

Expert Comment

by:SteveJ
ID: 24827600
How did you set up the Netgear to allow ICMP traffic? I have a FVM 328 and I can't find a setting or a rule or service that allows ICMP.

Good luck,
SteveJ
0
 

Author Comment

by:Martin_Radbo
ID: 24827630
If I remember correct the settings is at the page "Ports", at the bottom.
0
 
LVL 16

Accepted Solution

by:
SteveJ earned 500 total points
ID: 24827680
WOW!

So, under Advanced WAN Settings, I found a  "accept pings on the internet interface" setting and I checked it and then ping'd the interface. And then I lost the interface for about 3 minutes and got some really strange responses. I was getting a "TTL expired in transit" from the first hop out from the Netgear box, then timeouts then I lost the connection all together. . . which is really a bad thing if you are familiar with Netgear and the fact that if you simply close the connection without logging out you can't log back in without power cycling the router.

Anyway, I was able to reconnect to the router.

Perhaps you don't want to ping the internet interface as badly as you think you do!!

Good luck,
SteveJ
0
 

Author Comment

by:Martin_Radbo
ID: 24827714
I do want to ping it, of several reasons. Anyone know how to do it?
0
 
LVL 16

Expert Comment

by:SteveJ
ID: 24827741
So you have the same config option: "respond to pings on internet interface"?

Have you unchecked the option, saved the config, then gone back into the config and checked the option? No ACLs blocking the response from that particular subnet?

Good luck,
Steve
0
What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 

Author Comment

by:Martin_Radbo
ID: 24829405
Yes, Iäve tried to check/uncheck and unfortunately there are no ACL at all blocking anything.

I think this is a bug in t he NEtgear router but I am not sure.
0
 
LVL 16

Assisted Solution

by:SteveJ
SteveJ earned 500 total points
ID: 24839192
Considering the way my Netgear behaved when I checked the button to allow ping responses (lost connectivity briefly) I think you may be right that it's a Netgear bug.

Good luck,
SteveJ
0
 

Author Comment

by:Martin_Radbo
ID: 24892763
Netgear ask me for serial number to check if this is one of the batches with this known problem...   So I will give it to them and wait for response.

Thanks so for. I'll get back with result
0
 

Author Comment

by:Martin_Radbo
ID: 25127097
According to Netgear, this model is NOT a bad one (have checked serial number now). They suggest to put the WAN cable into a laptop or similar, configure an static IP for the WAN and similar for the laptop and trying to ping.

If the problem still exist "there must be something wrong with the router"..., otherwise with the cable connection itself or something else.

I wil give it a try as soon as possible
0
 

Author Comment

by:Martin_Radbo
ID: 25604844
Finally solved the problem by selling a new firewall (Netgear also) to this customer.
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
Shadow IT is coming out of the shadows as more businesses are choosing cloud-based applications. It is now a multi-cloud world for most organizations. Simultaneously, most businesses have yet to consolidate with one cloud provider or define an offic…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now