I need to connect to the internet from all sites on a WAN via a broadband connection in one of the branch offices.

Posted on 2004-11-11
Last Modified: 2010-04-10
I have a WAN consisting of a head office with 3 Cisco 805 routers and three remote sites each with its own 805 router. The Cisco 805's have 1 serial connection and 1 ethernet connection.

One of the branch offices has a broadband connection to the internet which all of the other sites want to access. A SonicWall firewall in the branch office is the gateway to the internet.  All of the sites need to be able to access each other.

I'm undecided as to whether to use RIP or static routes.

If I use RIP how do I make the firewall in the branch office the gateway of last resort for all of the other sites.


Can I have static routes for all inter-site traffic and have a gateway of last resort that routes through to the firewall in the branch office.


Question by:johnhickey
    LVL 36

    Accepted Solution

    Hi johnhickey,
    For security you are better off using static routes.
    For the remote sites just have the default gateway being their router which is what you would have already.
    For the routers at the main site have static routes for all remote sites defined and a default gateway pointing to the firewall.
    On the firewall have the default gateway set to the Internet router and static routes defined to the remote sites.

    Expert Comment

    Brother John,
    I would say that GR isn't incorrect, but just a difference of philosophy.  Rip is the easiest of the routing protocols to configure and even in a small network, it's helpful to build yourself the foundation for growth.  Who knows when the boss is going to come to you and say "head to punxatawney and get that office up" .  Using rip as we add locations, routers, circuits (because certainly you always want to press for more redundancy and reliability out of your wan..) makes it easier and more reliable.  And if it's all internal, we don't usually need to get too complicated with the protocols, another reason why rip is tried and true.
    Here's a quick doc on setting it up, too easy to do.

    Expert Comment

    I agree with JP. Static routes can eventually come back to bite you, or the next guy that comes in. RIP is where it is at. You will also want to consider which protocols you want to allow between the routers. Quite possible you only need a few. That allows less opportunity for an exloit.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Enabling OSINT in Activity Based Intelligence

    Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

    Lets look at the default installation and configuration of FreeProxy 4.10 REQUIREMENTS 1. FreeProxy 4.10 Application - Can be downloaded here ( 2. Ensure that you disable the windows fi…
    PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
    Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    13 Experts available now in Live!

    Get 1:1 Help Now