Solved

Create a route from one subnet to another, each as their own separate Internet connection.

Posted on 2008-06-13
2
646 Views
Last Modified: 2013-11-16
Here is my scenario:

I have 2 subnets 192.168.1.0 and 192.168.2.0

Right now there is a Watchguard Firebox X Edge in-between the subnets, it is on the 2.0 subnet and has an address of 192.168.2.1, it is the gateway for that subnet and is the internet gateway for the 2.0 subnet (the internet connection is on the 1.0 subnet.

We now have a separate internet connection for the 2.0 domain, so I am going to hook it to the WAN port on the Firebox and then those machines on the 2.0 subnet will continue through the 2.1 gateway but it will now be a different connection.

What I need to do now is make a route so that the computers on the 2.0 subnet can access the 1.0 subnet (for exchange and some file servers) through the Firebox.

I have a cross connect, so my thought was to hook that cross connect into one of the interface ports on the Firebox and do a route like this:

192.168.2.1 255.255.255.0 ----> 192.168.1.0 however when I do this it does not seem to work.

What am I missing? Do I need a router to connect to the Firebox or will the Firebox do it?
0
Comment
Question by:mlukens
2 Comments
 
LVL 7

Expert Comment

by:txhockey26
ID: 21779814
What is the gateway on the 192.168.1.0 subnet?    
0
 
LVL 32

Accepted Solution

by:
dpk_wal earned 250 total points
ID: 21785413
So, as I understand this is basically theprevious and current scenario:

Previous:
192.168.1.0/24 subnet ------ Edge WAN or internet port - Edge internal or trusted port --- 192.168.2.0/24

New implementation:

Internet ---- Edge WAN port - Edge trusted port --- 192.168.2.0/24 network
                                             |- Edge Optional port --- 192.168.1.0/24 network

If this is what you have implemented you would need to configure Edge to allow communication between trusted and optional network which is disabled by default.
To allow network traffic from the optional network to the trusted network, you must allow all traffic between the trusted and optional networks. Select the Disable traffic filters check box to allow all incoming and outgoing traffic between the trusted and optional interfaces [Under Firewall->Optional].

Other option is to have two NICs on a single machine; configure it as a router [one NIC on 192.168.2.0 network say 192.168.2.254 and other on 192.168.1.0 network ] and then connect the .2.254 NIC to the same switch as Edge trusted port; add a route on edge as below:
Network route 192.168.1.0/24 gateway 192.168.2.254
Other NIC of this machine would connect to 192.168.1.0/24 network switch.

Please let know if you need more details.

Thank you.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
PFsense box as firewall 5 64
Sonic Firewall re-routing 443 wrong server IP 10 122
Need Advise - System / Network Security 4 58
Sonicwall Email los and Alerts 1 63
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question