NETGEAR SRX5308-100AJS ProSafe Quad WAN Gigabit SSL VPN Firewall SRX5308 - Router + 4-port switch
Posted on 2010-11-07
I have purchased a NETGEAR SRX5308-100AJS ProSafe Quad WAN Gigabit SSL VPN Firewall SRX5308 - Router + 4-port switch for a client. This client requires two live WAN ports, one to the internet and a second for a corporate intranet. I spoke to Netgear sales regarding this and they recommended the NETGEAR SRX5308. The requirements of the project are to allow internet traffic through one WAN port (WAN1) and corporate Intranet traffice through the second WAN port (WAN2). I have configued both wan ports with static ip addresses, configured protocol binding for HTTP and HTTPS to both ports and configured default routes for the intranet traffic to go through WAN2. The router has two settings, setting a primary WAN port (One port live, a second port set as a failover port and the other two ports are disabled); or load balanced. The router has been set to load balanced. I have been informed by Netgear second level support that there is no need for a default route as it will work without one. I have found that this is not the case; the router is still load balancing traffic no matter what the target network in a 50/50 pattern. So the first WAN request will go through WAN port 1 and the second request will go through WAN port 2, the third request will go through WAN port 1 and the fourth through WAN port 2. (and the load balancing continues...)
I have the router configured as I requrie it to work, but need to find out if anyone can assist in setting a default route for the traffic to WAN port1 if it is not routed out through to the Intranet port (WAN2). The default routing section of the router allows setting a specific route for an ip address or a range of addresses within a single network range; but it will not allow the range to be set accross all networks. (ie I can set a default route for 220.127.116.114/32; or 18.104.22.168/24; but not for 22.214.171.124 - 126.96.36.199 - all networks that do not meed the above default routes)
PS I am working with Netgear second level support, but want to see if I can get a quicker response and solution to my issue...
Thanks for the help in advance.