Menu
What's new
By:
Filters Better Search

Pinging from WAN and LAN

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

G

gjf

Senior Member
Hi All!

I am using Asus RT-AC68U with latest Merlin frimware. I have found a strange issue today.

According to Firewall General - Respond Ping Request from WAN is disabled. And it works OK - when I try to ping myself (xxx.asuscomm.com) from the world it fails.

But when I try to ping myself from internal network using "ping xxx.asuscomm.com" - it's OK and shows my external IP (xxx .158.136.144), not internal one (192.168.1.1)

Is it by design?
 
gjf said:
Hi All!

I am using Asus RT-AC68U with latest Merlin frimware. I have found a strange issue today.

According to Firewall General - Respond Ping Request from WAN is disabled. And it works OK - when I try to ping myself (xxx.asuscomm.com) from the world it fails.

But when I try to ping myself from internal network using "ping xxx.asuscomm.com" - it's OK and shows my external IP (xxx .158.136.144), not internal one (192.168.1.1)

Is it by design?
Click to expand...

WAN refers to the interface, not the IP used by it. If you ping from your LAN, the packet never goes through the WAN interface and only hits the LAN interface, therefore you get a ping reply.
 
RMerlin said:
WAN refers to the interface, not the IP used by it. If you ping from your LAN, the packet never goes through the WAN interface and only hits the LAN interface, therefore you get a ping reply.
Click to expand...
Yes, exactly, but why in this case I can see my WAN IP, not LAN one?
Let me explain. I execute from WAN side:
Code: 
ping xxx.asuscomm.com
and see 100% loss because respond is disabled. It is OK.
Now I execute the same command from LAN side. And I see:
Code: 
Respond from xxx.158.136.144: bytes=32 time<1ms TTL=64
Why I see xxx.158.136.144 - WAN IP and not 192.168.1.1 which is LAN IP of my router?
 
gjf said:
Yes, exactly, but why in this case I can see my WAN IP, not LAN one?
Let me explain. I execute from WAN side:
Code: 
ping xxx.asuscomm.com
and see 100% loss because respond is disabled. It is OK.
Now I execute the same command from LAN side. And I see:
Code: 
Respond from xxx.158.136.144: bytes=32 time<1ms TTL=64
Why I see xxx.158.136.144 - WAN IP and not 192.168.1.1 which is LAN IP of my router?
Click to expand...

Because that is what you are pinging, the xxx.asuscomm.com DNS entry points to that WAN IP. Once the ICMP packet is inside the router (having come in through the LAN interface), it does not have to leave the router to access that IP - it's internal to the router. The ping packet never reaches the eth0 interface, the reply immediately comes back through the LAN interface.

The ICMP firewall rule only applies to the interface (eth0), not to the IP.
 
You must log in or register to reply here.

Similar threads

CntrlAltDel
Not able to ping to WAN
Replies
7
Views
323
CntrlAltDel
CntrlAltDel
R
Asus GT-AX11000 is bricked
Replies
12
Views
1K
dcsang
D
T
Open ports on WAN for service running on the router
Replies
8
Views
640
ColinTaylor
C
J
Lan-to-Lan VPN between 2 homes
Replies
3
Views
579
sfx2000
sfx2000
P
Tutorial Subnetting isolation without a VLAN switch
Replies
6
Views
869
Justinh
J
Similar threads
Thread starter Title Forum Replies Date
128bit education: DNS-WAN vs DNS-LAN ASUS Wi-Fi 2
M What is going on here!? How/Why am I Speed Testing Dual WAN (1Gbps/1Gbps @ 1:1 Load Balance) at ~2 Gbps speed ASUS Wi-Fi 10
K Docker Container with Telegram Notifications for WAN IP Monitoring ASUS Wi-Fi 0
J The '802.1Q' setting under 'WAN - Internet Connection' (Editing PVC) [Enabled] effect on network performance? ASUS Wi-Fi 5
M T-Mobile ASUS TM-AC1900 (RT-AC68U variant) gets WAN IP and can ping Internet but connected WiFi clients indicate no Internet? ASUS Wi-Fi 7
M WAN port is unresponsive ASUS Wi-Fi 4
brambil Use 2.5Gbps connection. AiMesh on wan side is possible? Dual WAN ethernet? AX68U and AC68U. ASUS Wi-Fi 12
V wan take new ip from isp ASUS Wi-Fi 3
H ASUS RT-AX86U Pro - no WAN connectivity upon reboot when running in Dual-WAN/Load-Balance mode ASUS Wi-Fi 19
V IPv6 addresses on LAN but disabled in settings ASUS Wi-Fi 12

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 944 (members: 18, guests: 926)
Top