Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
280
Views
0
Helpful
5
Replies

Next Hop for certain servers?

conlanadams
Level 1
Level 1

‎05-02-2006 10:19 AM - edited ‎03-03-2019 12:34 PM

In my network, we have three firewalls for out going connections, two on a t1, one on business cable.

All servers are nat'd through the two on the T1, call em pix1 and pix2. All user internet goes out through pix3 on the cable connection. All of this can be handled by my default router (a 2600) on the network. All of these appliances are on the same subnet.

Is there a way, that I can keep the 2600 as the default route for everything, but have pix1 specified as the next hop through the 2600 for some servers, pix2 for others, and pix3 for everything else?

Thanks in advance

Labels:
0 Helpful
5 Replies 5

sundar.palaniappan
Level 10
Level 10

‎05-02-2006 11:39 AM

Yes, you can configure PBR on your 2600 to route traffic based on different criteria including, source address/destination address, source/destination ports and many other criteria.

Here's a couple of links from CCO. Search of CCO for PBR should bring up many more links.

http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/products_configuration_guide_chapter09186a00800c75d2.html

http://www.cisco.com/en/US/products/ps6599/products_white_paper09186a00800a4409.shtml

Pls. rate the post if it helped.

HTH,

Sundar

0 Helpful

conlanadams
Level 1
Level 1
In response to sundar.palaniappan

‎05-08-2006 09:13 AM

Having a hard time finding any examples for my needs specificly.

best example, using a 192.168.1.0/24 net

2600 is 192.168.1.1

pix1 is 192.168.1.2

pix2 is 192.168.1.3

server1 is natd through pix1, but has to route traffic to elsewhere on our WAN (say 192.168.2.0/24) but has some hits coming to it through pix1 from the internet.

Can anyone give me any examples on how something like this could be done?

Thanks again

0 Helpful

kamlesh.sharma
Level 3
Level 3
In response to conlanadams

‎05-08-2006 10:07 AM

Hi,

Incoming internet traffic is always depends upon you how you want this to come suppose you have a subnets of public ip address 2.2.2.0/24 than suppose you want incoming internet traffic to come from 1'st T1 than publish that network to that provider.

HTH

0 Helpful

conlanadams
Level 1
Level 1
In response to kamlesh.sharma

‎05-08-2006 10:29 AM

Perhaps I wasnt clear enough, I think you misunderstood.

I'll expand my example.

-begin previous example-

best example, using a 192.168.1.0/24 net

2600 is 192.168.1.1

pix1 is 192.168.1.2

pix2 is 192.168.1.3

server1 is natd through pix1, but has to route traffic to elsewhere on our WAN (say 192.168.2.0/24) but has some hits coming to it through pix1 from the internet.

Add in that the 2600 has routes to all of my other networks (say 192.168.2.0/24 192.168.3.0/24 192.168.4.0/24) and a default route to a user cable internet connection on pix2.

My public IPs are NAT'd through pix1, and pix2 serves for my outgoing users internet.

thanks for any help

0 Helpful

conlanadams
Level 1
Level 1
In response to sundar.palaniappan

‎05-08-2006 10:40 AM

strange, it reposted an earlier post, please ignore this

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card