shtaffa
asked on
WAN and Internet connection help
Sorry, this may be a stupid question, but I'm by no means an network expert. My company has elected me to set this up.
We are changing to a different network provider. This network provider is connecting all of our sites with MPLS. At the corporate office we have an Internet connection from a different company. I've tinkered around with some settings and have not been able to connect to the internet and connect to the remote locations at the same time. If I set my local machine's gateway to the router for the remote locations, I can reach them but no internet. If I set my local machine's gateway to the firewall on the Internet connection, I can reach the Internet but no remote locations.
I'm sure there's an easy way to do this. I would hate to have to set up routes on all of the workstation PC's to get them to work properly.
I have included a basic Visio diagram.
Basic-Network-Diagram.jpg
We are changing to a different network provider. This network provider is connecting all of our sites with MPLS. At the corporate office we have an Internet connection from a different company. I've tinkered around with some settings and have not been able to connect to the internet and connect to the remote locations at the same time. If I set my local machine's gateway to the router for the remote locations, I can reach them but no internet. If I set my local machine's gateway to the firewall on the Internet connection, I can reach the Internet but no remote locations.
I'm sure there's an easy way to do this. I would hate to have to set up routes on all of the workstation PC's to get them to work properly.
I have included a basic Visio diagram.
Basic-Network-Diagram.jpg
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
if you're unable to set that default-gateway inside your router than you will have to set static routes for your corporate networks.
This task may also be accomplished by a login-skript for all your (domain-)users.
Ove
This task may also be accomplished by a login-skript for all your (domain-)users.
Ove
As Enrique said above, your router at 192.168.100.254 already has the required routes to all of your remote sites so it is easiest to have it as the default gateway and then have a static default route on it to point to the firewall for internet access.
Otherwise to do the reverse and make the Firewall the default gateway you would have to create a static route on it for each of the remote sites with a next hop of the router. You wouldn't have to create a set of routes on each PC.
Also both the router and the firewall should send redirects to the PC's when the better route is via the other router but not all devices listen to those and just keep sending everything to their default gateway.
Otherwise to do the reverse and make the Firewall the default gateway you would have to create a static route on it for each of the remote sites with a next hop of the router. You wouldn't have to create a set of routes on each PC.
Also both the router and the firewall should send redirects to the PC's when the better route is via the other router but not all devices listen to those and just keep sending everything to their default gateway.
ASKER
Thanks for the input guys. I have submitted a support request to our NSP to make the change in the router. Once that is done I will revisit this topic and assign points accordingly.
ASKER
Unfortunately, I don't manage that router. Probably a good thing. I will call my NSP and have them make the change.