Solved

IPCOP with 2 Red interfaces

Posted on 2007-12-05
3
3,039 Views
Last Modified: 2009-07-29
I currently run a small network with IPCOP and COP Filter, and use the IPCop VPN to remote offices also running IPCOP Boxes.

I want to set my head office ip cop box up with 2 red NIC's - (2 internet links, 1 x PPPOE, 1 x Realworld IP).

I then want to configure the box to send all traffic except IPSEC and VOIP down the  Real world Link.

Any suggestions on how to do this one?
0
Comment
Question by:itigroup
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 5

Accepted Solution

by:
sardiskan earned 500 total points
ID: 20423094
You should be able to configure just one of the red interfaces to do the IPSec tunnel, after that, the firewall itself should take care of the routing tables so that if a user is requesting an IP address on the other end of the IPSec tunnel it would send it down that pipe. At the very least, you could just add a static route to the firewall to direct IPSec traffic down the IPSec tunnel.
0
 

Author Comment

by:itigroup
ID: 20424562
Yes but what I need to do is put internet traffic down internet link with 1 isp and vpn down internet link with another isp
0
 
LVL 5

Expert Comment

by:sardiskan
ID: 20439294
In IPcop, you will be creating the IPSec tunnel ON one of the two red interfaces. The traffic going out and coming in the IPSec tunnel will have no choice but to go out the only tunnel that has the IPSec tunnel on it, therefor it will be going out whatever ISP you plug into that red interface.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco ASA 5506W VPN Clients not seeing local network 12 78
cannot send E-mails to one company 15 146
Fortigate 100D NTP Issue 4 224
Swapping port on a  Cisco 5510 firewall 1 71
In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question