asked on Catalyst 3560 packet forwarding dependant on server IP and destination port
Hi experts,
I hope the following makes sense, and that someone can help!
We have a Catalyst 3560 as our LAN default gateway with 2 VLANs:
VLAN 1 is 172.16.0.1/255.255.252.0
VLAN 2 is 99.99.99.245/255.255.255.0
We have two Cisco Pix's which traffic is forwarded to:
Pix 1 is 172.16.0.3 (ISP 1)
Pix 2 is 172.16.0.4 (ISP 2)
We have 2 Solaris servers which are on the 99.99.99.x VLAN, so they use 99.99.99.245 as their gateway:
Solaris server 1 is 99.99.99.9
Solaris server 2 is 99.99.99.10
They run an application which connects to 3 different remote ADSL sites on three unique destination ports (9911, 9912, 9913) - but only one of the Solaris servers is ever on at any one time.
Currently, all packets through these ports go to these 3 sites via Pix 1. What I want to do is configure the Catalyst 3560 to interrogate the packets from both servers (ONLY from these servers, I don't wish to interrogate every packet from every device!) and then:
If outbound traffic from 99.99.99.9 is on port 9911, go to Pix 1 (172.16.0.3)
If outbound traffic from 99.99.99.10 is on port 9911, go to Pix 1 (172.16.0.3)
If outbound traffic from 99.99.99.9 is on port 9912, go to Pix 2 (172.16.0.4)
If outbound traffic from 99.99.99.10 is on port 9912, go to Pix 2 (172.16.0.4)
If outbound traffic from 99.99.99.9 is on port 9913, go to Pix 2 (172.16.0.4)
If outbound traffic from 99.99.99.10 is on port 9913, go to Pix 2 (172.16.0.4)
How can I achieve this on the C3560? And can I add the commands and remove them quickly without having to restart the switch?
Any help appreciated!
I hope the following makes sense, and that someone can help!
We have a Catalyst 3560 as our LAN default gateway with 2 VLANs:
VLAN 1 is 172.16.0.1/255.255.252.0
VLAN 2 is 99.99.99.245/255.255.255.0
We have two Cisco Pix's which traffic is forwarded to:
Pix 1 is 172.16.0.3 (ISP 1)
Pix 2 is 172.16.0.4 (ISP 2)
We have 2 Solaris servers which are on the 99.99.99.x VLAN, so they use 99.99.99.245 as their gateway:
Solaris server 1 is 99.99.99.9
Solaris server 2 is 99.99.99.10
They run an application which connects to 3 different remote ADSL sites on three unique destination ports (9911, 9912, 9913) - but only one of the Solaris servers is ever on at any one time.
Currently, all packets through these ports go to these 3 sites via Pix 1. What I want to do is configure the Catalyst 3560 to interrogate the packets from both servers (ONLY from these servers, I don't wish to interrogate every packet from every device!) and then:
If outbound traffic from 99.99.99.9 is on port 9911, go to Pix 1 (172.16.0.3)
If outbound traffic from 99.99.99.10 is on port 9911, go to Pix 1 (172.16.0.3)
If outbound traffic from 99.99.99.9 is on port 9912, go to Pix 2 (172.16.0.4)
If outbound traffic from 99.99.99.10 is on port 9912, go to Pix 2 (172.16.0.4)
If outbound traffic from 99.99.99.9 is on port 9913, go to Pix 2 (172.16.0.4)
If outbound traffic from 99.99.99.10 is on port 9913, go to Pix 2 (172.16.0.4)
How can I achieve this on the C3560? And can I add the commands and remove them quickly without having to restart the switch?
Any help appreciated!
RoutersNetwork Operations
Last Comment
Jon Winterburn
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Thank you - perfect!