Shared Leased Line Router Change Issues

systemagic
systemagic used Ask the Experts™
on
I work for a company called CompanyA and we had a Ubiquiti EdgeRouter and I'm replacing it with a Draytek 2960, the internet is provided via a Leased Line with 20 static public IP Addresses.  There is a company in the same building as us called CompanyB and they share our leased line, previously the leased line went direct into the EdgeRouter and companyB's router plugged into one of the LAN ports on the EdgeRouter and this worked fine, I cant seem to replicate the setup on the Draytek to get internet traffic to CompanyB's router.  CompanyB have a Fortinet router which Im not familiar with.  I have a cable running from LAN2 on the Draytek into WAN1 on the Fortinet router, the Fortinet router on the WAN1 interface has a static address set of 50.50.50.50/255.255.255.248 which hasnt been changed since it worked with the EdgeRouter  The guy who originally setup the connection gave me the following notes
Gateway IP for CompanyB: 50.50.50.49
Usable IP Range: 50.50.50.50-50.50.50.54

All of the 20 IP Addresses including the above IP's have been added to the router WAN setup as aliases.

As you can tell im using fake IP addresses but you get the idea.

Please Help!!
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
SouljaSr.Net.Eng
Top Expert 2011

Commented:
Looks like if there are no changes on company B's fortinet. You need to set your Draytek interface it is connected to to the 50.50.50.49 ip on the /29 subnet.  Also, your draytek will need routes back to the fortinet for their networks. Is the Fortinet Natting at all?

Author

Commented:
Thanks Soulja, I've setup LAN2 as shown in the attached called Setup1, the IP address is set to 50.50.50.49, I've then assigned LAN2 to port 4 which is where the cable to the Fortinet is plugged into.  I'm not sure if the Fortinet is Natting I dont have active access to it.

Thanks
Setup1.PNG
SouljaSr.Net.Eng
Top Expert 2011

Commented:
Ok, now what routes did the edge router have back to the fortinet? That will need to be on the draytek.
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

Author

Commented:
Well the EdgeRouter seems quite complicated but I managed to find the following Static routes set:

50.50.50.48/29 to Eth7 (Eth7 being the port on the Edge Router that the Fortinet was plugged into)

also a random one

100.64.1.0/24  to Eth7

Thats it I cant see any others

Author

Commented:
So I need to add the Static Route on the Draytek so what would i put in the attached
staticroute.PNG
SouljaSr.Net.Eng
Top Expert 2011

Commented:
Yes, you will need to add a static route to the Fortinet. Try to duplicate the routes present on the Ubiquiti

That's a great feature if your Drayteck is able to do that. I would change your whole configuration as well as the Fortinet. They would have to make changes also.

Author

Commented:
I decdied to go a different route in the end and took out the Fortinet router, I then setup a VLAn on the Draytek and plugged CompanyB's network into this VLAN then opened the ports they needed.  This makes it nice and simple and is working well.

Thanks for your help Soulja
I decdied to go a different route in the end and took out the Fortinet router, I then setup a VLAn on the Draytek and plugged CompanyB's network into this VLAN then opened the ports they needed.  This makes it nice and simple and is working well.

Thanks for your help Soulja
SouljaSr.Net.Eng
Top Expert 2011

Commented:
As long as you are okay with there being no physical network separation from the other company and yours. With just a separate VLAN, you are relying on just Layer 2 separation and most likely sharing the routing table on that Draytek. Things to consider.  You have essentially merged the networks.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial