NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Routing between VLANs
SRX5308, firmware: 3.0.8-12 (later firmwares dont route UDP correctly, which breaks incoming SIP)
I have two subnets 192.168.1.0/24 and 192.168.2.0/24 setup as two VLANs. We have an external DNS record that gets forwarded to our .2.0/24 subnet and everything works fine (we have multiple ports open and http and https across various ports).
However, trying to hit that external DNS address from the .1.0/24 subnet doesnt route - connections just time out.
Does this SRX308 "router" actually route, or is it just a marketing gimmick? I already had UDP routing problems with the latest firmware and we had to drop back to 3.0.x to get that to work. Is there going to be a firmware update anytime soon that fixes the routing portion?
I just hope the firewall portion of the firmware works better than the router.
I have two subnets 192.168.1.0/24 and 192.168.2.0/24 setup as two VLANs. We have an external DNS record that gets forwarded to our .2.0/24 subnet and everything works fine (we have multiple ports open and http and https across various ports).
However, trying to hit that external DNS address from the .1.0/24 subnet doesnt route - connections just time out.
Does this SRX308 "router" actually route, or is it just a marketing gimmick? I already had UDP routing problems with the latest firmware and we had to drop back to 3.0.x to get that to work. Is there going to be a firmware update anytime soon that fixes the routing portion?
I just hope the firewall portion of the firmware works better than the router.
2 Replies
- When you say From the .1.0/24, are you trying to hit the other VLAN of .2.0/24 from internal? There is an Option on that router for Inter-VLAN Routing, but there is a bug evidently ( Check the VPN Section) that will cause it to stop working. I'd report it to Netgear. The more reports they get of it, the faster (hopefully) they will fix it.
- Im done . Ive given up on Netgear firewalls. I just installed pfsense on a spare SFF Dell box, and its running great with faster throughput by about ~20mbps (speedtest.net checked).
All required ports forwarded, vlan and inter vlan routing working as expected, SIP etc. Basically what you would expect a router/NAT/firewall to do.
I'd rather have a single small 1U box like the SRX5308 in the rack doing this work, but a router that doesn't route reliably/properly isn't a router.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
