Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
814
Views
0
Helpful
6
Replies

ip route via VPN to Google

robertstahl
Level 1
Level 1

‎11-30-2011 12:52 AM - edited ‎03-07-2019 03:39 AM

First, I am a novice, so my questions may seem simple--or not.

I just had a VPN installed that is allocated 6Mbps of our 20Mbps, and it is supposed to handle only Google traffic for now. I am in China, which is why I am having to do this in the first place; China loves to hate Google, and the Great Firewall of China filters heavily or completely shuts down GoogleApps.

I just discover that the company that installed the VPN is routing all my traffic through their router, which leaving my remaining 14 Mbps unused, since the VPN is trottled at their end; plus, I do not want Asia traffic going through the VPN.

I am trying to modify the config so that all traffic except the ones listed for _netblocks.google.com go through my primary router. Here is my proposed code:

ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0 219.56.129.107

ip route 216.239.32.0          255.255.224.0 GigabitEthernet0/0 219.56.129.106

ip route 64.233.160.0          255.255.224.0 GigabitEthernet0/0 219.56.129.106

ip route 66.249.80.0 255.255.240.0 GigabitEthernet0/0 219.56.129.106

ip route 72.14.192.0 255.255.192.0 GigabitEthernet0/0 219.56.129.106

ip route 209.85.128.0 255.255.128.0 GigabitEthernet0/0 219.56.129.106

ip route 66.102.0.0 255.255.240.0 GigabitEthernet0/0 219.56.129.106

ip route 74.125.0.0 255.255.0.0 GigabitEthernet0/0 219.56.129.106

ip route 64.18.0.0 255.255.240.0 GigabitEthernet0/0 219.56.129.106

ip route 207.126.144.0 255.255.240.0 GigabitEthernet0/0 219.56.129.106

ip route 173.194.0.0 255.255.0.0 GigabitEthernet0/0 219.56.129.106

ip route 10.1.0.0 255.255.0.0 10.200.1.2

ip route 10.10.0.0 255.255.0.0 10.200.1.2

ip route 10.11.0.0 255.255.0.0 10.200.1.2

Obviously, I am doing something wrong. When I apply the config, the first line "ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0 219.56.129.107" is removed, and all my traffic stops.

Any help or suggestions are appreciated. Any recommendation for cleaning up the code and making it more professional is also welcome.

Thanks, Robert.

Labels:
0 Helpful
6 Replies 6

ajay chauhan
Level 7
Level 7

‎11-30-2011 05:07 AM

Please clarify what type of VPN you are talking about -

Also 219.56.129.107 and 106 ? what are these for if i look at configuration .107 seems to be the next hop which means all the traffic except routes pointing to 106 should reach there .

Also if you can attach toplogy of connectivity someone can for sure help you out.

Thanks

Ajay

0 Helpful

Latchum Naidu
VIP Alumni
VIP Alumni
In response to ajay chauhan

‎11-30-2011 05:16 AM

Hi,

Obviously, I am doing something wrong. When I apply the config, the first line "ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0 219.56.129.107" is removed, and all my traffic stops.
This is because you are removing the default route completely so the whole unknown (generally traffic to internet could) will be stop working.

I think you are talking about client vpn installed on your pc and accessing everything after connected to the client vpn. Try to point your google traffice pointing to your vpn gateway for example like...
ip route 72.14.192.0 255.255.192.0 vpn gateway IP.

Please rate the helpfull posts.
Regards,
Naidu.

0 Helpful

robertstahl
Level 1
Level 1

‎11-30-2011 05:43 AM

x.x.x.107 is my router

x.x.x.106 is the VPN router

x.x.1.128 is the gateway

they both connect to the gateway x.x.1.128 via a 3-port vlan

the next hop for all "non-Google" traffic from my router should be the gateway

the next hop for all Google traffic should be x.x.x.106 (from there the VPN router can worry about the packets)

0 Helpful

Latchum Naidu
VIP Alumni
VIP Alumni
In response to robertstahl

‎11-30-2011 05:50 AM

Then point your google traffic like below...

ip route 72.14.192.0 255.255.192.0 x.x.x.106


Please rate the helpfull posts.
Regards,
Naidu.

0 Helpful

ajay chauhan
Level 7
Level 7
In response to Latchum Naidu

‎11-30-2011 05:58 AM

Also your default route should point to 1.128

ip route 0.0.0.0 0.0.0.0 x.x1.128 This will carry rest of the traffic.

ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0 219.56.129.107 this is the wrong way doing ,you can not point route to interface IP which is configured on same router.

Thanks

Ajay

0 Helpful

robertstahl
Level 1
Level 1
In response to ajay chauhan

‎11-30-2011 07:34 AM

This is a Head-Desk moment!

You are absolutely right Ajay, and that is the way I had before the VPN guys changed the config. I have just been thinking poorly on the matter, and did not notice what I was writing.

Thanks for pointing that out!!

Robert

0 Helpful
Customers Also Viewed These Support Documents