asked on
NETGEAR SRX5308-100AJS ProSafe Quad WAN Gigabit SSL VPN Firewall SRX5308 - Router + 4-port switch
I have purchased a NETGEAR SRX5308-100AJS ProSafe Quad WAN Gigabit SSL VPN Firewall SRX5308 - Router + 4-port switch for a client. This client requires two live WAN ports, one to the internet and a second for a corporate intranet. I spoke to Netgear sales regarding this and they recommended the NETGEAR SRX5308. The requirements of the project are to allow internet traffic through one WAN port (WAN1) and corporate Intranet traffice through the second WAN port (WAN2). I have configued both wan ports with static ip addresses, configured protocol binding for HTTP and HTTPS to both ports and configured default routes for the intranet traffic to go through WAN2. The router has two settings, setting a primary WAN port (One port live, a second port set as a failover port and the other two ports are disabled); or load balanced. The router has been set to load balanced. I have been informed by Netgear second level support that there is no need for a default route as it will work without one. I have found that this is not the case; the router is still load balancing traffic no matter what the target network in a 50/50 pattern. So the first WAN request will go through WAN port 1 and the second request will go through WAN port 2, the third request will go through WAN port 1 and the fourth through WAN port 2. (and the load balancing continues...)
I have the router configured as I requrie it to work, but need to find out if anyone can assist in setting a default route for the traffic to WAN port1 if it is not routed out through to the Intranet port (WAN2). The default routing section of the router allows setting a specific route for an ip address or a range of addresses within a single network range; but it will not allow the range to be set accross all networks. (ie I can set a default route for 64.22.66.444/32; or 64.22.66.0/24; but not for 1.1.1.1 - 224.254.254.254 - all networks that do not meed the above default routes)
PS I am working with Netgear second level support, but want to see if I can get a quicker response and solution to my issue...
Thanks for the help in advance.
I have the router configured as I requrie it to work, but need to find out if anyone can assist in setting a default route for the traffic to WAN port1 if it is not routed out through to the Intranet port (WAN2). The default routing section of the router allows setting a specific route for an ip address or a range of addresses within a single network range; but it will not allow the range to be set accross all networks. (ie I can set a default route for 64.22.66.444/32; or 64.22.66.0/24; but not for 1.1.1.1 - 224.254.254.254 - all networks that do not meed the above default routes)
PS I am working with Netgear second level support, but want to see if I can get a quicker response and solution to my issue...
Thanks for the help in advance.
Routers
Last Comment
dwknight
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Thank you for your suggestion, but the static route section of the netgear will not allow 0.0.0.0 - it is detected as a an invalid entry.
The user guide advises that the router should have set up a default route automatically if you have a vpn setup.
ftp://downloads.netgear.com/files/SRX5308_RM_29Apr10.pdf
if not, try 1.1.1.1 with subnet of 0.0.0.0 and see if that works.
ftp://downloads.netgear.com/files/SRX5308_RM_29Apr10.pdf
if not, try 1.1.1.1 with subnet of 0.0.0.0 and see if that works.
ASKER
Thanks for the suggestion, but I have no need for a VPN to be set up. I am looking to have a straight router with 2 active WAN ports only.
I wa just quoting the user guide, not suggesting a vpn.
ASKER
I am accepting this answer, even though, eventually Netgear support advised that a default route could not be manually set on this device because it is a true load balancing device. Thank you for your assistance anyway.
The above section should read as follows: (no matter how much proof reading is done...)
(ie I can set a default route for 64.22.66.44/32; or 64.22.66.0/24; but not for 1.1.1.1 - 224.254.254.254 - all networks that do not meet the above default routes)