Reply
Posts: 2
Registered: ‎01-14-2018

LRT224 ICMP redirect

[ Edited ]

Hello,

Here is the setup I have:

NAS1----┌─┐           W1 W2
NAS2----│D│         ┌─┴──┴─┐      ┌──────┐
PC1-----│S│------p1-│LRT224│-p3---│switch│----PC2
        │G│         └─┬──┬─┘      └──────┘
PC3-----└─┘          p2  p4
             printer──┘  └─Wifi AP

NAS1 : 10.2.4.98     NAS2 : 10.2.4.99     PC1  : 10.2.4.5
PC3  : 10.1.3.5      PC2  : 10.2.2.12
W1   : 10.3.2.1      W2   : 10.3.3.1

LRT224 VLAN configuration:
VLAN  Descr    Inter VLAN  Device
ID             Routing     Management  LAN1      LAN2      LAN3      LAN4  
1     Default  Enabled     Enabled     Tagged    Excluded  Excluded  Excluded
21    21       Enabled     Disabled    Excluded  UnTagged  Excluded  Excluded
22    22       Enabled     Disabled    Excluded  Excluded  UnTagged  UnTagged
13    13       Disabled    Disabled    Tagged    Excluded  Excluded  Excluded
100   100_BH   Disabled    Disabled    UnTagged  Excluded  Excluded  Excluded


100_BH VLAN is only here because for a strange reason, I can't configure only tagged VLAN on one interface...

The DSG switch has port 1 connected to LRT224 with tagging VLAN 1 and 13
NAS ans PC are connected on Access ports, only PC3 is on VLAN 13

I used a Cisco sg300 as router and want to change it to a LRT224 to have the dual WAN.
Using the Cisco, I didn't have any problems. I only change the router, the setting of other devices didn't change.
After changing the router, I rebooted the PC and the NAS to be sure they don't keep old router information.

The issue I have is when, from PC2, I ping the NAS1 or NAS2 everything is working fine but at some point, usually when I try to access the NAS using SMB, the ping stop to work anymore and SMB too.
Pings between PC1 and PC2 are alway working.
Using wireshark on PC2, I saw that when ping stop working, at the same time PC2 start receiving ICMP redirect messages from the LRT224.

This is the received ICMP packet:
Internet Protocol Version 4, Src: 10.2.4.1, Dst: 10.2.2.12
Internet Control Message Protocol
    Type: 5 (Redirect)
    Code: 1 (Redirect for host)
    Checksum: 0x0727 [correct]
    [Checksum Status: Good]
    Gateway address: 10.2.4.98
    Internet Protocol Version 4, Src: 10.2.2.12, Dst: 10.2.4.98
    Transmission Control Protocol, Src Port: 56490, Dst Port: 445

Why did I receive such message from the router? I can't have direct access to the 10.2.4.98 from an other subnet...
What did I miss here?

Thank you for your help
Have a great day

Expert
Posts: 13,604
Registered: ‎01-18-2013

Re: LRT224 ICMP redirect


spik014 wrote:


I used a Cisco sg300 as router and want to change it to a LRT224 to have the dual WAN.


AFAIK the Cisco SG300 is layer 3 capable switch which can route but no firewall or DHCP Server. What were you using for NAT, Firewall and DHCP Server before?


Smiley Wink Please remember to Kudo those that help you.

Linksys
Communities Technical Support
Posts: 2
Registered: ‎01-14-2018

Re: LRT224 ICMP redirect

[ Edited ]

Yes, you right.

The SG300 is a L3 switch, it doesn't NAT, firewall (but ACL)  but do DHCP.

For my internet double WAN connection I am using a netgear FVS336Gv2 which is going to die.

 

I din't put it on the draw beacause my WAN connection are OK for what I do with the linksys.

To reduce the numbre of device I wanted to merged the cisco and netgear functionnality and that's where I comme up with the linksys224.

 

My problem is really on the LAN routing part, for any reason when I try to access my NAS I get those ICMP redirect and loss the connetivity.

So I'm still going with the combo cisco-netgear but I dont know for how long...

 

I forgot to specify that all VLAN are on /24 sunbnets

Expert
Posts: 13,604
Registered: ‎01-18-2013

Re: LRT224 ICMP redirect

[ Edited ]

spik014 wrote:

 


100_BH VLAN is only here because for a strange reason, I can't configure only tagged VLAN on one interface...

 


Everything looks good except this. On the LRT the Untagged port is the PVID or another way to look at is the port's untagged VLAN is it's native VLAN.


Smiley Wink Please remember to Kudo those that help you.

Linksys
Communities Technical Support