06-09-2026 09:38 AM
Hello Everyone!
i have encountered an issue with my network testing environment and would like to ask for your opinion.
I wanted to test for connectivity in my environment so the only policy rule is a full any/any on any service with action allow, so it overshadows everything.
my layout is such:
eth1/4 192.168.1.1/24
eth1/14.1 192.168.20.1/24
eth1/14.2 192.168.40.1/24
eth1/15.1 192.168.10.1/24
eth1/15.2 192.168.30/24
all same zone trust (with no profiles)
all same virtual router (no static routes and routing table shows all networks and routes properly)
no outbound connection to the internet.
the problem: connectivity is up for everyone except for 1.1 in only one direction though.
the only one that cannot ping is any ip on the 1.0 network that has 1.1 as it's gateway and that tries to reach any other device connected in the network.
the layout is so simple that i really don't understand where the problem could be, i tried a lot of solutions and tried changing the ips or making either everyone a subinterface or everyone an interface, same result.
thank you in advance for your time reading this! Have a good day (i sure am not having one)
06-11-2026 02:48 PM
Hello @ANGELO.REVELLINO
thank you for reply.
Since Bytes received is 0, it looks like that target device is not responding. Based on my past experience seeing Bytes received 0 has almost always been host not responding due to whitelisting or other issues. Since target IP address is within your internal network are you able to check host itself? Would you be able to run packet capture on that device?
Kind Regards
Pavel
06-10-2026 03:24 PM
Hello @ANGELO.REVELLINO
thanks for post!
Could you check traffic log under: Monitor > Logs > Traffic to see reason for connection failure? Look at session end reason column. Also, could you check Bytes Sent / Bytes received columns to see there is a response?
Kind Regards
Pavel
06-11-2026 05:13 AM
Hi Pavel, nice to meet you!
Session end reason is aged-out, bytes sent is 74 and received is 0.
Thank you in advance for your consideration.
06-11-2026 02:48 PM
Hello @ANGELO.REVELLINO
thank you for reply.
Since Bytes received is 0, it looks like that target device is not responding. Based on my past experience seeing Bytes received 0 has almost always been host not responding due to whitelisting or other issues. Since target IP address is within your internal network are you able to check host itself? Would you be able to run packet capture on that device?
Kind Regards
Pavel
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
