[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 293
  • Last Modified:

Routing Question to differentiate WAN w/ internet

I am currently setting up and MPLS WAN on a private connection between my branches and corporate hq.  Currently we are using VPN through a pix.  I would like to put the routers in series and set up a system of routing to differentiate WAN and internet routes.  This is how I envision it set up

LAN ---> Cisco 2801 ----> Dual T1 (multilink) MPLS (2 serial interfaces) -----> Branch (Cisco 2801 10.1.xx.xx)
                    |
             Fast Ethernet
                    |
                    V
              Cisco Pix 515 -------> Cisco 2621 -----> internet and Branch Cisco 1721 10.2.xx.xx

How do I set up routes on the Cisco 2801 to direct outgoing traffic on my LAN that is destined for 10.1.xx.xx to go out the multilink interface on the 2801 router and 10.2.xx.xx as well as all internet traffic to go out the serial interface on the 2621 router as I will still be retaining a few VPN tunnels?  Thank you in advance for any help and please request further information if necessary.


 
0
t1clausen
Asked:
t1clausen
1 Solution
 
minmeiCommented:
ip route 10.1.0.0 255.255.0.0 (either remote addres of multilink point to point or dialer interface [dialer1])
ip route 0.0.0.0 0.0.0.0 internal IP of Pix515

This will split your traffic appropriately. Add individual routes for each brach you put on the MPLS, leave the default (0.0.0.0) route pointed to the pix.

0
 
t1clausenAuthor Commented:
thanks a lot...  I was thinking it would be pretty logical.  I was wary about the static route.  Sometimes it is best to ask the experts before altering production equiptment.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now