Okay, I've read the rules, and while I am very new at the job this isn't a career question ,but a technical one, and I know this will see like a bad setup (and it is) but it was already like this for years and not even the main sysadmin knows how to configure or change this.
Our network is as follows, we have a main router, cisco 2800 series. That is connected directly to PaloAlto PA-220 with PAN-OS latest PAN-OS 8.1 (latest subversion of PAN-OS 8.1 I mean), which is connected to 5 HP switches.
We also have 3 TP-LINK WR-941 routers acting as APs, setup in router mode, they get a local IP address on a WAN port, with their DHCP servers enabled to give out address from 9.0/24, 10.0/24 and 11.0/24 ranges respectively.
Trouble is anybody connected to the wi-fi of these devices, we can not access via VNC or RDP connection. Nor can we access the routers that control those wifi connections (not on their local IP in the network, nor using their default gateway address) if we are not connected to the wifi they make.
Is there any way around this issue ? I assumed it is a routing issue and so I tried making a route that made all the traffic destined for 9.0 subnet to go to local IP adress (1.189) of the router controlling that subnet, made it on both PA and Cisco, but no joy.
Is there an easy way to do this , or at least a way that doesn't require major changes to the setup ?
No comments:
Post a Comment