06-18-2008 07:39 PM - edited 03-03-2019 10:24 PM
we plan to use a router with 2 ADSL connections: 1 is dedicated for interface traffic only and the other is dedicated for VPN traffic only.
because ADSL connection gets IP and default route automatically from upstream router, there will be 2 default routes in the router,we can use policy based routing to manipulate the traffic and apply the policy on the ingress interface.
the issue is: I am not sure about the return traffic? is it return via the same path, or is it possible it will take another path back?
Solved! Go to Solution.
06-19-2008 02:04 AM
If the traffic leaving your router via the ADSL connection is NAT'ted to that interfaces address then the traffic will always return to the interface it left from.
06-19-2008 02:04 AM
If the traffic leaving your router via the ADSL connection is NAT'ted to that interfaces address then the traffic will always return to the interface it left from.
06-19-2008 08:00 PM
i think you are right. different interface use different NAT, the return traffic will go back via same path without any other config.
06-19-2008 04:24 AM
I would put the 2nd Dialer interface into a VRF:
interface Dialer1
ip vrf forwarding dsl2
ip address negotiated
The tunnel interface can be sourced from the Dialer:
interface Tunnel1
ip address 192.168.252.14 255.255.255.240
tunnel source Dialer1
tunnel vrf dsl2
tunnel protection ipsec profile spokeprof
This will solve the issue with return traffic, NAT limitations, etc. The tunnel interface itself exists in the global routing table.
HTH!
CJ
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide