Solved

Adding Static Route

Posted on 2010-11-23
7
676 Views
Last Modified: 2012-05-10
I have a SiteProtector console which is running windows 2003 server. It has one NIC. I am putting this device in our DMZ and setting the default gateway to 10.100.24.2 but want any traffic for 10.0.0.0 or 170.230.0.0 to go to 10.100.24.1 gateway.
Device Network info is:
Static IP: 10.100.24.30
mask: 255.255.255.0
Default Gateway: 10.100.24.2
DNS: 170.230.115.229

I have tried:
route add 10.0.0.0 mask 255.0.0.0 10.100.24.1
route add 170.230.0.0 mask 255.255.0.0 10.100.24.1
"The route addition failed: Either the interface index is wrong or the gateway does not lie on the same network as the interface. Check IP Address Table for the machine."
0
Comment
Question by:m_travis
  • 4
  • 2
7 Comments
 
LVL 6

Expert Comment

by:StinkyPete
ID: 34196575

Try to specify the interface index, using the 'IF' command line parameter.
I understand there is only one physical NIC but ...

0
 
LVL 95

Expert Comment

by:Lee W, MVP
ID: 34196643
Add an IP Address to the NIC so that it has an address on both the 10.x.x.x network and the 170.230.x.x network
0
 
LVL 1

Author Comment

by:m_travis
ID: 34196682
when I type route print the only interface besides 127.0.0.1 is 10003, so I put
route add 10.0.0.0 mask 255.0.0.0 10.100.24.1 IF 10003
I got the same error

This device is in the DMZ and the only IPs allowed in that network range is 10.100.24.0/24 addresses
0
Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

 
LVL 95

Expert Comment

by:Lee W, MVP
ID: 34197347
I'll repeat:
Add an IP Address to the NIC so that it has an address on both the 10.x.x.x network and the 170.230.x.x network

You can't add a route when the machine has no logical way of getting there!
0
 
LVL 1

Author Comment

by:m_travis
ID: 34197561
maybe I didnt make myself clear. So here is an image to help clarify things, hopefully. I need all of the 10.0.0.0 and 170.230.0.0 to go to 10.100.24.2 and all other traffic go to 10.100.24.1.

leew: the server is pointed  to 24.1 as default, so it can get to the internet just fine, I need it to get to the internal network. 170.230 address is not allowed to exist in the DMZ the 10.100.24 range. Diagram
0
 
LVL 1

Accepted Solution

by:
m_travis earned 0 total points
ID: 34240277
The appliance had to be plugged into the network, even if the it is plugged into the wrong network range. I never tried this assuming that it wouldnt help since it had a static of 10.100.24.29 and was being plugged into a 170.230.38.0/24 network.
0
 
LVL 1

Author Closing Comment

by:m_travis
ID: 34276729
No one suggested even checking the NIC card on the device. I got the idea from a MSS engineer.
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
BGP prefix and routing 3 60
FreeRADIUS vs Windows NPS (server 2016) 2 125
Remote access problem to camera controller 9 37
tamper proof asset tags - benefits 4 27
Data center, now-a-days, is referred as the home of all the advanced technologies. In-fact, most of the businesses are now establishing their entire organizational structure around the IT capabilities.
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

838 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question