Routing isssues on a WAN

Posted on 2006-05-05
Last Modified: 2010-03-18
I have a vpn device at my main location with an ip of A.B.C.G, it is on the A.B.C.F network . I need to route traffic requesting/seeking two specific static external ips from the A.B.D.F network to the vpn, but allow all other traffic from the A.B.D.F network to be routed normally. The normal flow of internet traffic from the A.B.D.F network is: from computer to A.B.D.C, over line to A.B.K.C, into the A.B.C.F network, it's then routed to A.B.C.C my main firewall, and then out.  From here I have a static route in place that should reroute the specific traffic to the vpn device.  Is there an easier way to do this?  I took care of this on individual pc's on the A.B.C.F network, by creating persistent routes.  There are not many pc's on the A.B.D.F network that need to be rerouted.  Is it possible to setup persistent routes to a device that is not on the same network as the pc?  Any help or thoughts would be appreciated.

Question by:fnbgppl
    LVL 21

    Accepted Solution

    yes, but it requires a few extra routes...BTW A.B.C.G, A.B.C.F, etc... is very confusing.  If you don't want to use your actual IPs please at least use real IPs to describe the issue.

    If the static IPs needing routing over the VPN are and  Your main firewall is, your VPN device is and the remote network is

    At the gateway from the 2.0 network to the 1.1 network create the static route of (cisco, but should still make sense)

    ip route
    ip route

    Create the same static routes on your default gateway on the network to take care of "on network" clients accessing these IP addresses.

    I do not suggest creating static routes in the OS as this is cumbersome and only there if you do not have routers or switches with routing capabilites on your network.

    LVL 1

    Author Comment

    mcsween,  Thank you for your help.  I ended up creating static routes in my firewall.


    Featured Post

    What Security Threats Are You Missing?

    Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

    Join & Write a Comment

    FIPS stands for the Federal Information Processing Standardisation and FIPS 140-2 is a collection of standards that are generically associated with hardware and software cryptography. In most cases, people can refer to this as the method of encrypti…
    This video is in connection to the article "The case of a missing mobile phone (". It will help one to understand clearly the steps to track a lost android phone.
    Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

    755 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now