Directing traffic from one server between two different routers.

Posted on 2008-11-06
Last Modified: 2012-05-05

We have two Cisco ASA 5505's on two different DSL lines.  Their internal IP addresses are on the same LAN and on the same subnet.  One is and the other is  We have a Windows 2003 server on the same LAN and subnet ( that we would like to be able to RDP to from either of the outside lines.  However, since the default gateway of this server points to the .254 router, we cannot access it from the outside address of the .253 router with RDP because the connection tries to send information back out of the .254 router (Thus giving a "denied, no tcp connection" error).  Is there any way we can use the ROUTE command on this server, or any other method to tell it to send data it receives from the .253 router back to the .253 router so clients can access the server from either outside IP address?

Let me know if I need to clarify anything or go into more detail.

Thank you
Question by:DataDudes
    LVL 4

    Expert Comment

    You can give a Windows machine more than one default gateway

    The problem is you can never, with any great certainty determine which will be used consistently.
    LVL 28

    Accepted Solution

    No, you won't be able to do that because you are allowing RDP traffic inbound through each firewall from anywhere, I assume, and there is no differentiating factor you can use in a route statement on the server to point return traffic to one firewall or the other.

    The best I can think of to do is to configure remote access VPN connectivity for external RDP access to the server with each firewall handing out a separate set of DHCP addresses to the VPN clients.  Then you could configure a static route on the server that points traffic to the .253 firewall for addresses that are in that firewalls DHCP pool.  The default route that is already pointing to .254 will take care of the DHCP pool of addresses in the other firewall so you don't need a separate static route for that one.

    Featured Post

    Find Ransomware Secrets With All-Source Analysis

    Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

    Join & Write a Comment

    If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
    The Cisco RV042 router is a popular small network interfacing device that is often used as an internet gateway. Network administrators need to get at the management interface to make settings, change passwords, etc. This access is generally done usi…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

    731 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now