Shared Leased Line Router Change Issues

I work for a company called CompanyA and we had a Ubiquiti EdgeRouter and I'm replacing it with a Draytek 2960, the internet is provided via a Leased Line with 20 static public IP Addresses.  There is a company in the same building as us called CompanyB and they share our leased line, previously the leased line went direct into the EdgeRouter and companyB's router plugged into one of the LAN ports on the EdgeRouter and this worked fine, I cant seem to replicate the setup on the Draytek to get internet traffic to CompanyB's router.  CompanyB have a Fortinet router which Im not familiar with.  I have a cable running from LAN2 on the Draytek into WAN1 on the Fortinet router, the Fortinet router on the WAN1 interface has a static address set of 50.50.50.50/255.255.255.248 which hasnt been changed since it worked with the EdgeRouter  The guy who originally setup the connection gave me the following notes
Gateway IP for CompanyB: 50.50.50.49
Usable IP Range: 50.50.50.50-50.50.50.54

All of the 20 IP Addresses including the above IP's have been added to the router WAN setup as aliases.

As you can tell im using fake IP addresses but you get the idea.

Please Help!!
LVL 1
systemagicAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Soulja53 6F 75 6C 6A 61 Commented:
Looks like if there are no changes on company B's fortinet. You need to set your Draytek interface it is connected to to the 50.50.50.49 ip on the /29 subnet.  Also, your draytek will need routes back to the fortinet for their networks. Is the Fortinet Natting at all?
0
systemagicAuthor Commented:
Thanks Soulja, I've setup LAN2 as shown in the attached called Setup1, the IP address is set to 50.50.50.49, I've then assigned LAN2 to port 4 which is where the cable to the Fortinet is plugged into.  I'm not sure if the Fortinet is Natting I dont have active access to it.

Thanks
Setup1.PNG
0
Soulja53 6F 75 6C 6A 61 Commented:
Ok, now what routes did the edge router have back to the fortinet? That will need to be on the draytek.
0
Powerful Yet Easy-to-Use Network Monitoring

Identify excessive bandwidth utilization or unexpected application traffic with SolarWinds Bandwidth Analyzer Pack.

systemagicAuthor Commented:
Well the EdgeRouter seems quite complicated but I managed to find the following Static routes set:

50.50.50.48/29 to Eth7 (Eth7 being the port on the Edge Router that the Fortinet was plugged into)

also a random one

100.64.1.0/24  to Eth7

Thats it I cant see any others
0
systemagicAuthor Commented:
So I need to add the Static Route on the Draytek so what would i put in the attached
staticroute.PNG
0
Soulja53 6F 75 6C 6A 61 Commented:
Yes, you will need to add a static route to the Fortinet. Try to duplicate the routes present on the Ubiquiti

That's a great feature if your Drayteck is able to do that. I would change your whole configuration as well as the Fortinet. They would have to make changes also.
0
systemagicAuthor Commented:
I decdied to go a different route in the end and took out the Fortinet router, I then setup a VLAn on the Draytek and plugged CompanyB's network into this VLAN then opened the ports they needed.  This makes it nice and simple and is working well.

Thanks for your help Soulja
0
systemagicAuthor Commented:
I decdied to go a different route in the end and took out the Fortinet router, I then setup a VLAn on the Draytek and plugged CompanyB's network into this VLAN then opened the ports they needed.  This makes it nice and simple and is working well.

Thanks for your help Soulja
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Soulja53 6F 75 6C 6A 61 Commented:
As long as you are okay with there being no physical network separation from the other company and yours. With just a separate VLAN, you are relying on just Layer 2 separation and most likely sharing the routing table on that Draytek. Things to consider.  You have essentially merged the networks.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Routers

From novice to tech pro — start learning today.