Two Active Gateways?

[peterlyttle]

Hello, hopefully someone can shed some light on this problem.

We have a firewall with 2 networks, Untrusted and DMZ.

In the DMZ we have a Webserver that needs to talk to a database server in the Untrusted.

In the Untrusted we have a database server and a ISP router which serves a remote site.

The problem is that when the DF GW's on the database & webserver are set to the firewall they can both talk together, however traffic from the ISP router cant. If we set the database server DF GW to the ISP router then the remote site can access the database server and the webserver in the DMZ cant.

So, is there any way to set this up that the default gateway on the servers is the firewall and make a modification to the ISP router so it can access the database server?

The default network on the ISP router is set to -

ip default-network 0.0.0.0

Could we add -

ip route <database server ip> 255.255.255.255 <database server ip>
?

Thanks,
Peter

 

[dearingkr]

Add a static route in the firewall pointing to the ISP router (to remote network)

ip route <remote subnet> <remote subnet mask> <ISP router>


MCSE CCNA CCDA

 

[peterlyttle]

Hi, we tried this but it didnt work, we managed to fix the problem by adding a 2nd gateway and a route on the database server in the windows options.