Solved

Problems using two WAN-Interfaces (Policy Based Routing) on ASTARO ASG120

Posted on 2008-06-24
3
1,492 Views
Last Modified: 2008-06-27
Following scenario:

On our Astaro ASG120 we've got these Interface-Configuration:

ETH0 = Internal Network
ETH1 is the default internet connection. We receive SMTP-Mails over the fixed ip and forward them to our "internal" Exchange Server.
ETH2 is a dial up adsl connection that we use for web surfing.

The problem is, how can i achieve that http and ftp traffic (after they have passed the web filter/proxy) uses the fast Internet Connection on ETH2. I tried to create Policy Based Routing Rules i.e.

HTTP / HTTPS / FTP from INTERNAL Network with ANY DESTINATION use ETH2.

But these rules does't have any effect. Web-Traffic still runs on ETH1.
0
Comment
Question by:sam_berlin
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 57

Expert Comment

by:giltjr
ID: 21861999
What version of the ASG software are you using?
0
 
LVL 57

Accepted Solution

by:
giltjr earned 250 total points
ID: 21862017
Have you followed:

http://portal.knowledgebase.net/display/2n/kb/article.asp?aid=202274&n=3&s=1

If you are using both the smtp and http proxy, then you seem to be out of luck.  According to the above if you are using the proxy, you can't policy route for that protocol.  You need to setup the default route based on which interface you want the proxied traffic to use and then policy route the other traffic to the other interface.

Since you want smtp traffic to go out one interface and http another, if you are using the proxy for both you can accomplish this.

Now if you are just using the proxy for one, or not at all.  Then policy based routing should work.
0
 

Author Comment

by:sam_berlin
ID: 21882911
Thanks for your answer. As a workaround we now use just the ADSL-Connection as the standard gateway and send outgoing emails via smarthost.
0

Featured Post

Secure Your WordPress Site: 5 Essential Approaches

WordPress is the web's most popular CMS, but its dominance also makes it a target for attackers. Our eBook will show you how to:

Prevent costly exploits of core and plugin vulnerabilities
Repel automated attacks
Lock down your dashboard, secure your code, and protect your users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question