?
Solved

Adding Static Route

Posted on 2010-11-23
7
Medium Priority
?
691 Views
Last Modified: 2012-05-10
I have a SiteProtector console which is running windows 2003 server. It has one NIC. I am putting this device in our DMZ and setting the default gateway to 10.100.24.2 but want any traffic for 10.0.0.0 or 170.230.0.0 to go to 10.100.24.1 gateway.
Device Network info is:
Static IP: 10.100.24.30
mask: 255.255.255.0
Default Gateway: 10.100.24.2
DNS: 170.230.115.229

I have tried:
route add 10.0.0.0 mask 255.0.0.0 10.100.24.1
route add 170.230.0.0 mask 255.255.0.0 10.100.24.1
"The route addition failed: Either the interface index is wrong or the gateway does not lie on the same network as the interface. Check IP Address Table for the machine."
0
Comment
Question by:m_travis
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
7 Comments
 
LVL 6

Expert Comment

by:StinkyPete
ID: 34196575

Try to specify the interface index, using the 'IF' command line parameter.
I understand there is only one physical NIC but ...

0
 
LVL 96

Expert Comment

by:Lee W, MVP
ID: 34196643
Add an IP Address to the NIC so that it has an address on both the 10.x.x.x network and the 170.230.x.x network
0
 
LVL 1

Author Comment

by:m_travis
ID: 34196682
when I type route print the only interface besides 127.0.0.1 is 10003, so I put
route add 10.0.0.0 mask 255.0.0.0 10.100.24.1 IF 10003
I got the same error

This device is in the DMZ and the only IPs allowed in that network range is 10.100.24.0/24 addresses
0
When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot has fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

 
LVL 96

Expert Comment

by:Lee W, MVP
ID: 34197347
I'll repeat:
Add an IP Address to the NIC so that it has an address on both the 10.x.x.x network and the 170.230.x.x network

You can't add a route when the machine has no logical way of getting there!
0
 
LVL 1

Author Comment

by:m_travis
ID: 34197561
maybe I didnt make myself clear. So here is an image to help clarify things, hopefully. I need all of the 10.0.0.0 and 170.230.0.0 to go to 10.100.24.2 and all other traffic go to 10.100.24.1.

leew: the server is pointed  to 24.1 as default, so it can get to the internet just fine, I need it to get to the internal network. 170.230 address is not allowed to exist in the DMZ the 10.100.24 range. Diagram
0
 
LVL 1

Accepted Solution

by:
m_travis earned 0 total points
ID: 34240277
The appliance had to be plugged into the network, even if the it is plugged into the wrong network range. I never tried this assuming that it wouldnt help since it had a static of 10.100.24.29 and was being plugged into a 170.230.38.0/24 network.
0
 
LVL 1

Author Closing Comment

by:m_travis
ID: 34276729
No one suggested even checking the NIC card on the device. I got the idea from a MSS engineer.
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Suggested Courses

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question