This lesson will illustrate the necessary
steps to configure a simple static route on a typical Endian appliance.
This will allow us to configure routing (i.e. communication
capabilities) between the Endian and other networks that may not live
directly on the Endian but on an external router or through a VPN
tunnel.
Configuration Example
In this simple example, we'll configure a static route to an external
network that lives on a router within the Green network. As you can see
the router has one interface in the Green network and another interface
for the external network that lives outside the Green network.
Create Static Route
Now we'll add a static route in the Endian under Network > Routing > Static Routing.
Here we'll leave the "Source Network" field blank to mean ANY and then
supply the destination network (external) and the route gateway IP which
is the Green IP of the external router.
Click Add Route and then Apply to complete the process.
Click Add Route and then Apply to complete the process.
Verify Route
Now you can verify the route works properly by pinging a device in
the remote network (10.45.1.0/24) and vice versa. Be sure to check the
appropriate firewall rules are in place to allow the desired level of
communication between the two networks.
Policy Routes - Basic Outbound Load Sharing:
This lesson will illustrate the necessary steps to configure a simple static route on a typical Endian appliance. This will allow us to configure routing (i.e. communication capabilities) between the Endian and other networks that may not live directly on the Endian but on an external router or through a VPN tunnel.Configuration Example
In this simple example, we'll configure policy routing so that the
Green (LAN) and Orange (DMZ) use the primary Internet connection while
the Blue (WIFI) network uses a secondary Internet connection This will
ensure our Blue (WIFI) users will not take bandwidth from the Green /
Orange network traffic.
Create Policy Route #1 (Green / Orange)
Now we'll add a new policy route in the Endian under Network > Routing > Policy Routing.
Select the GREEN and ORANGE zones as the Source and we'll leave the
Destination network / ports blank ( = ANY) and then configure the route
to use the Main Uplink. Notice we've checked the "Use backuplink if
uplink fails" as this will provide a failover policy to the backup
uplink in the event our main uplink goes down.
Click Create Rule and then Apply to complete the process.
Click Create Rule and then Apply to complete the process.
Create Policy Route #2 (Blue)
Now we'll add our second policy route in the Endian for the Blue
network. Select the BLUE zones as the Source and we'll leave the
Destination network / ports blank ( = ANY) and then configure the route
to use the Backup Uplink. Notice we've checked the "Use backuplink if
uplink fails" as this will provide a failover policy to the main uplink
in the event our backup uplink goes down.
Click Create Rule and then Apply to complete the process.
Click Create Rule and then Apply to complete the process.
Verify Routes
Now you can verify the route works properly by performing a
traceroute from any workstation in the Green / Orange network to the
Internet and you should see the packet leave out of the Main uplink.
Then you can do another traceroute from any device in the Blue network
to the Internet and you should see that packet leave out of the Backup
uplink.
No comments:
Post a Comment