Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
492
Views
0
Helpful
0
Replies

Multiple Gateways, InterVLAN Routing.

John Griffith
Level 1
Level 1

‎12-02-2014 07:46 AM - edited ‎03-07-2019 09:44 PM

Hello, I'm looking for some help with my small business network.  We are in a rural area with very limited connectivity options.  We were on only T1's until recently when our carrier was able to bring limited DSL availability to our area.

When I came to the company the previous IT guy had been using an old PIX but had purchased an ASA5505 and never got it working.  I was able setup the ASA5505 as our firewall/gateway/router after purchasing Unlimited Hosts and Security Plus licenses for it. Adding VLANs for Guests, and when the new phone system was added (IP Based) I added another VLAN for that.  ACLs setup to secure business network from guests etc.

When DSL became available the carrier sales persons provided us with DSL modems and device from Peplink that balances internet access across all the DSL connections "Peplink Balance580".  I added the Balance580 to the network, adding our VLAN information to the configuration and for the most part it works.  Each VLAN was given a secondary gateway to the internet via the Balance580. DHCP was altered to issue the secondary gateway to computers getting a DHCP issued IP address,  All servers and static 'mission critical' devices have a Static IP using the original gateways in the ASA5505 for internet connectivity.

Here is the issue.  Since adding the new Multiple DSL internet connections and Balance580 when using a workstation with DHCP issued secondary gateway.  You can't access any of the other VLANs.  The Balance580 has "InterVLAN routing" checkmarked. all the VLANs are configured in it and from any VLAN you can use it's gateway to access the internet.  But my workstation for instance, when I use DHCP I can not access the other VLANs from my workstation.  If I set my IP Statically and use the ASA5505 gateway I have no issues.

The ASA5505 is just not capable of multiple simultaneous ISPs that is why I set up the network the way I did.

So.  Help, what hardware is there that I could use to solve this issue, where there is one device that can physically be both gateways and handle the multi VLAN routing. 

I can't put the T1's behind the Balance580 because that just opens another can of worms with dynamic port ranges like SFTP, our Teleworker VOIP Phones connecting to our phone system from outside of the network.  I want our network services accessible from the internet to not traverse the Balance580 and all it's balancing 'magic'..

I've added a quick diagram as an attachment.

Any help would be great.  Thank you.

 

P.S.  I had been in contact with Peplink Support in the past.  but they were never able to help me, our support agreement that came with the purchase of the Balance580 has passed so they won't talk to me anymore.... 

Labels:
Preview file
210 KB
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents