08-08-2011 07:55 AM
Hello, i am trying to do somehting that hosuld be very simple and straight forward but for some reasons, its not working.
My customer has two internet connections : ADSL and IP-SHDSL used as below :
ADSL router used for all browsing (from all users ) -copnnected to ethernet 1/1
IP-SHDSL Router used only for Fixed IP services :- Exchange Server and SQL Server - connected to ethernet 1/4
Exchange has a public IP of 197.227.1.121 and internal IP of 172.16.2.3
SQL Has a Public IP of 197.227.1.124 and internal IP of 172.16.2.13
I am trying to configure the PA-500 so that all users go out to internet via the ADSL connection (workign wonderfully)
But I want traffic from the Exchange and the SQL to go out to internet via the IP-SHDSL with their public IP address, this part is not working at all.
any ideas out there ?
regards,
08-08-2011 08:01 AM
Policy Base Forwarding rules are there for that
Rule 1: Exchange server to internet will exit on SDSL interface
Rule 2: Exchange server to internet will exit on SDSL interface
Rule 3: all other traffic to internet will exit on cheap internet line
08-08-2011 08:09 AM
Have tried that, but not working...
08-08-2011 08:16 AM
Did you also create bi-directional NAT rules for SQL and mail server?
You should post a screenshot of your filetring rules, PBF, NAT and network interfaces. I have some use case with 3 internet lines and no problem....
08-08-2011 10:58 AM
Sorry, I had added this long comment then discovered you had set the rules to bi-directional.
08-09-2011 05:02 AM
Hi
I noticed your PBF rules lack a next hop
You'll need this next hop IP to route your traffic out to the next router so it will be able to go out to the internet.
regards
Tom
08-09-2011 05:07 AM
I have corrected that give the IP address of the SDSL router, but still it does not go through.
i do a simple tracer from the Ex server to outside and i see that the trace hangs on reaching the PAN (172.16.2.1) after that it seems it can't get the route tight.
08-09-2011 10:16 AM
Hello, Please open a case with support if you continue to have problems and we can take a detailed look.
Thanks
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
