ESXi/Networking question: I think I'm missing something easy

Shambler

Supreme [H]ardness
Joined
Aug 17, 2005
Messages
6,419
LAN - 10.0.0.0 /24
Gateway 10.0.0.1 (Comcast box)
DHCP setup on this to hand out 2 - 100

ESXi management - 10.0.0.101
1 NIC
1 vSwitch
All VM's on e1000 NIC's

All of my virtual machines work great when either obtaining an IP from DHCP or setting a static IP within the 2-100 range. If they are set to anything above 100 they can not ping outside the network. (Request timed out)

Example: Windows 7 VM - 10.0.0.140
I can ping 10.0.0.1, 10.0.0.101 and my other connected devices. But I cannot ping anything outside that subnet. (8.8.8.8, root hint servers, yahoo.com, etc etc)
If I set that VM to 10.0.0.24, everything is just fine.


ESXi Network image
VCT52wnicAOoS-zA4GBA8rCFMyyCUM5kSJOSNNKV8Xk=w429-h302-no


What am I doing wrong?
 
Are there firewall rules on the comcast box restricting traffic outside of the dhcp range?
 
Geiger! I just checked that out now. (Extended the range). And traffic now routes to IP's that it encompasses.

I'll either need to leave it this way, or hopefully find a setting to change. I really need to call Comcast and pop this thing into a dummy or bridge mode and use my own box.

This has been the oddest thing.
 
Geiger! I just checked that out now. (Extended the range). And traffic now routes to IP's that it encompasses.

I'll either need to leave it this way, or hopefully find a setting to change. I really need to call Comcast and pop this thing into a dummy or bridge mode and use my own box.

This has been the oddest thing.

This is why I put everything behind my own router and firewall and use the WAN uplink to the Comcast/FIOS modem. I also tend assign that port as the DMZ on the Com/FIOS router so I get direct feed to my personal firewall and let it make the decisions. Also the firmware and options on a private router are usually far better than what you get for the Com/FIOS router. I also used to separate local traffic from internet traffic (now that I don't have all the roommates, that isn't really an issue anymore).
 
Sorry, I read it as you saying it was some kind of combo device :)

Gawd no...the horror. Their software and setup is almost always trash. I have had admin access to both Comast and FIOS modems and always have to fix their shit. I don't even hook up my devies to their modem until I have admin access and can go through and change their settings. In the past I had to get special permission to get DMZ added to a modem so that I could pass through the bandwidth to my own router/firewall.
 
Back
Top