Hi All,
I have an Equal Logic cluster with 2 arrays in it, and each array has NIC card in the 15 network with the ip 10.10.10.9 which is the VIP for the cluster;
I have also a firewall, with inside interface eth1/1.11 and outside interface eth2/2.22
when I am in the firewall and I try to ping from eth2/2.22 to 10.10.10.9 the ping echo reply works fine, but when I am in the firewall and I try to ping from eth1/1.11 to 10.10.10.9 I do not get any reply(reply timeout)..... the same if I ping from the SAN device to the firewall I get a reply from eth2/2.22 but not from eth1/1.11.
I debugged the traffic in the firewall and the packets are sent from the firewall(policy, route are correct nd permitted);when I ping from eth1/1.11 the packet goes out through the interface eth2/2.22, which is correct but I do not get a reply
I am wondering, is possible that there is a "host"(like in linux) file in SAN device or some other firewall rules(iptables, from SAN side) that block the traffic from eth1/1.11( output through eth2/2.22) to 10.10.10.9(SAN)?
Thank you