TRB500 bridge mode problem

tvass60 · November 4, 2024, 9:31am

Hi Everyone,

I have a problem I can not solve myself and I need some configuration recommendation.
I have a firewall that has two WAN interfaces connected to two different ISPs.
Tha main WAN connection is regular fiber connection to the main IPS, while the second WAN
is just a failsafe connection to a mobile ISP using a TRB500 gateway that is configured
in “bridge” mode.

The topology

 ---------------          -----------------------
 | ISP main |          | ISP mobile 5G |
 ---------------          -----------------------
   |                                    |
   |                          ------------------
   |                          |  TRB500     |
   |                          ------------------
   |                                   |
 -------------------------------------------
 |                Firewall                     |
 -------------------------------------------
   |                |                 ...   |
  DMZ  VLAN1              VLAN5

I need to use a TRB500 just as a gateway to the 5G mobile ISP.
The firewall’s second WAN interface receives the mobile ISP’s IP
via DHCP that is pushed throw the TRB500 in bridge mode, but the incoming
trafick is not forwarded to the firewall. I need to know how to configure
TRB500 in order to let the all incoming trafick (TCP, UDP, all ports) forward
throw the TRB500’s LAN interface to the firewall’s secondary WAN interface.
From the LAN network the internet works perfectly via the 5G’s ISP too, but the DMZ cannot be reached via the 5G’s ISP network.

Thank you for your help!!

tamas

r.janssen · November 4, 2024, 1:46pm

Do you get replies from outgoing traffic (i.e. you can use the internet via the TRB500)? Is it only incoming connections that do not work?
Because that might well be caused by a firewall at your 5G ISP blocking all incoming traffic.

Of course having two ISP connections on your firewall requires special configuration (policy routing) as well.

tvass60 · November 5, 2024, 9:18am

Hi R.Janssen,

Thank you for your help! I have checked it and you are right:

“Because that might well be caused by a firewall at your 5G ISP blocking all incoming traffic.”

tamas

system · November 19, 2024, 9:31am

This topic was automatically closed after 15 days. New replies are no longer allowed.