Improve company productivity with a Business Account.Sign Up

x
?
Solved

How to configure network to route traffic to sub-net via one router and everything else on another

Posted on 2009-03-30
6
Medium Priority
?
281 Views
Last Modified: 2013-12-14
Hi,
I've got a network with one main router that's handling Internet access/email/Lan-2-Lan VPNS.

To get better performance I've bought another router so I can transfer the LAN-2-LAN VPN to it.

How can I set the main network up so it routes traffice to the remote site though the second router whilst all other traffic goes though the main router?

I'm using hardware router based  VPNs between the remote site and second router.  The netowrk is a SBS 2003 network.

Thanks!
0
Comment
Question by:jmsjms
  • 3
  • 2
6 Comments
 
LVL 9

Expert Comment

by:hmare
ID: 24018445
You will need to create a static route on the main router telling it that all traffic for x.x.x.x (the remote site) uses the second router as its gateway. You will also need some kind of rule allowing access from the wan to the second router, similar to what you would need for a web server.
0
 
LVL 14

Accepted Solution

by:
Roachy1979 earned 2000 total points
ID: 24019271
Easy way is to set a route in a login script for the remote lan on the workstations.  This avoids traffic getting passed from one router to the other.  If your remote lan has the address range of 192.168.10.0/24 for example and the router for the VPN was 192.168.1.254, your route statement would be

route add 192.168.10.0 mask 255.255.255.0 192.168.1.254

you could make this a persistent route (ie only have to add it once on each machine) with the -p switch on the end, so:

route add 192.168.10.0 mask 255.255.255.0 192.168.1.254 -p

The default gateway for the LAN would remain the same (ie the gateway for the internet connection).

Just add the above to a login script and it will become active when users log in.
0
 

Author Comment

by:jmsjms
ID: 24026574
Hi Roachy

I use a VBS loginscript.  Will this work in VBS?  If I have it in their login script with a -p will it just put it in once or will it continue to add it?

Cheers
John
0
Improve Your Query Performance Tuning

In this FREE six-day email course, you'll learn from Janis Griffin, Database Performance Evangelist. She'll teach 12 steps that you can use to optimize your queries as much as possible and see measurable results in your work. Get started today!

 
LVL 14

Expert Comment

by:Roachy1979
ID: 24026685
If the rule exists it will overwrite the existing rule.....so it should be fine.

Not sure about VBS.  I'm sure you could call a separate batch file from within a VBS login script though...just create a .bat file in the Netlogon folder and place a separate call to run that file....
0
 

Author Comment

by:jmsjms
ID: 24082189
I've not yet put it in a script but have used it on a test PC and server.  Works fine on XP and SBS2003 but when I tried it on a W2003 R2 server it didnt like the -p.  Had a look at the /? and it's not listed as an option. Weird eh?

Anyway thanks very much!

John
0
 

Author Closing Comment

by:jmsjms
ID: 31564308
Thanks!
0

Featured Post

What Kind of Coding Program is Right for You?

There are many ways to learn to code these days. From coding bootcamps like Flatiron School to online courses to totally free beginner resources. The best way to learn to code depends on many factors, but the most important one is you. See what course is best for you.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

This month, Experts Exchange’s free Course of the Month is focused on CompTIA IT Fundamentals.
This article is about building a site to site VPN tunnels in Cisco CSR1000V router with IOS XE. There are two Policy Based IPsec VPN tunnels configured on CSR1000V router one with NAT and another without NAT.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

608 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question