XGS1930-24 External Traffic problem
Freshman Member
I just got a new XGS1930 model and I have a strange problem. Despite configuring GW DNS, unfortunately the switch does not have access to external services including Nebula. However, I am connected to this switch with a laptop on port 2 and the exact same communication works correctly. I have updated the firmware to the latest version. I admit that this is the first time I have encountered such a situation. Has anyone encountered a similar situation?
All Replies
-
I will add that internal communication works correctly according to the diagnostics on the switch.
0 -
Hi @tczauderna,
I assume your switch has configured the correct IP address, default gateway, and DNS server. Your XGS1930-24(actually is XGS1930-28) can't connect to Nebula because it isn't in any Nebula org/site now.
- If you want to use Nebula to manage this switch, please add it to your organization/site.
- If you just want to check the Internet connectivity, you can access Menu > Management > Diagnostic page to test.
Zyxel Melen0 -
Maybe to avoid any assumptions I am pasting the configuration, there is no neurological data here
As you can see with this configuration it doesn't work correctly. I am connected through this switch with my laptop and I have exactly the same DNS gateway configuration and I have correct communication
0 -
Hi @tczauderna,
Could you help to collect the tech support file so I can help to check?
You can follow this FAQ to collect and share it with me via private message.
Zyxel Melen0 -
I'm still looking for some restrictions on UTM fortigate but unfortunately I don't see anything that could block the traffic. because as you can see it's not just about nebula but also the local service.
As you can see DNS itself communicates outside but ICMP traffic doesn't.P.S. There's no curl or wget interface on the switch sometimes it would be useful
0 -
Remove the tech support by Zyxel Melen
Here it may be interesting because it looks a bit like it doesn't assign this Default GW to the virtual VLAN interface. And maybe we have a problem here or maybe I didn't notice something somewhere
0 -
Hi @tczauderna,
Could you help me do some ping tests? The destinations are "10.0.10.1" and "1.1.1.1".
Also, here's Nebula switch offline troubleshooting guide for reference:
https://community.zyxel.com/en/discussion/17937/zyxel-nebula-switch-troubleshooting-guide
Zyxel Melen0 -
as for nebula, you know, until we figure out what's wrong with the communication on the switch, Nebula won't work
0 -
ZON and laptop connected to this switch
0 -
Hi @tczauderna,
According to the ping test result, the problem should be on your gateway. It seems like the switch can ping to the gateway but cannot ping to the Internet.
Zyxel Melen0
Zyxel Employee
Categories
- All Categories
- 415 Beta Program
- 2.5K Nebula
- 152 Nebula Ideas
- 102 Nebula Status and Incidents
- 5.8K Security
- 304 USG FLEX H Series
- 283 Security Ideas
- 1.5K Switch
- 77 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.5K Consumer Product
- 255 Service & License
- 396 News and Release
- 85 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.7K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 87 About Community
- 77 Security Highlight
