Cannot ping upstream VyOS Interface from downstream device

Hello,

I am brand new to VyOS. I am using it in my lab to test basic routing functions such as OSPF. I am using VyOS 1.1.8. I could not even get basic routing working with 1.4.x

Eth0 is used as my OOBM address: 172.20.1.26/24 - I can ssh into VyOS perfectly fine

Eth1 is used to connect to my upstream firewall. This is the interface that all traffic downstream will use to connect to the network. It is 10.17.5.2/30 where 10.17.5.1 is the upstream firewall. I can ping the firewall from 10.17.5.2 just fine.

Eth2 is my downstream interface that all devices will use as their default gateway. It is 10.17.6.1/24. From my downstream device (windows 10 VM) I can ping 10.17.6.1 just fine. Win10 VM is using 10.17.6.1 as it’s default gateway.

I have an OSPF neighborship built with my firewall over Eth1. I am seeing it’s routes, and it is seeing my routes (specifically the 10.17.6.0/24 network).

From thy VyOS router, I can ping 10.17.5.1 (FW IP) from Eth2, so I know routing through the VyOS works. However, I cannot ping 10.17.5.1 from my Windows10 machine. Furthermore, I cannot even ping VyOS Eth1 interface (10.17.5.2) from my Windows 10 machine. I am assuming this is where the issue is. This is a locally connected network and it should be able to ping that IP.

Here is my show IP route output:

Codes: K - kernel route, C - connected, S - static, R - RIP, O - OSPF,
I - ISIS, B - BGP, > - selected route, * - FIB route

S>* 0.0.0.0/0 [1/0] via 10.17.5.1, eth1
O 10.17.5.0/30 [110/102] is directly connected, eth1, 00:30:47
C>* 10.17.5.0/30 is directly connected, eth1
O 10.17.6.0/24 [110/102] is directly connected, eth2, 00:30:47
C>* 10.17.6.0/24 is directly connected, eth2
O>* 10.172.20.0/30 [110/112] via 10.17.5.1, eth1, 00:30:35
C>* 127.0.0.0/8 is directly connected, lo
C>* 172.20.1.0/24 is directly connected, eth0

Is there something simple I am forgetting?

This ended up being my Windows 10 machine. There were two routes in there for 0.0.0.0. It is working as expected.

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.