cyberspace
Technical User
In our office there are 2 default gateways - one is a leased line which we use mainly for email and website (ie, traffic to our internally hosted website) traffic, the other is via broadband line and is used almost exclusively for staff internet access.
Since we installed our x506, all traffic is going over the leased line with the broadband currently unusued, while we decide the best way to utilise it. Currently I prefer the extra security over the extra speed. However we also use the leased line more and more for voice, so I want to get internet access off the leased line.
What I ideally want, is for all DMZ traffic (172.16.254.0, mapped to external IP's via virtual server on a 1 to 1 basis) to use the leased line, and for all LAN traffic (172.16.1.0) to use the broadband line. They are in separate security zones and have a default gateway of the port on the X506 to which that security zone belongs.
The device only lets you enter one default gateway, which is currently set to the leased line router...is there a way to do source based routing..or perhaps some workaround that will work efficiently, to send external LAN traffic over the broadband? I've seen some routers can send port 80 (for example) to a specific gateway...is there anything like that in the x506?
I'd also thought about whether load balancing will do it...putting the broadband router in it's own security zone also. As I say, the leased line does email and web traffic, so I presume that any requests to the website coming in from the leased line, will always go back out on that line? This is imperative, naturally. If I set the balance of say 20% to the primary link (leased line) and 80% to the secondary (broadband)...may that also work??
My other idea is to use a 3com router (5000 series) with 2 ethernet interfaces, although not entirely sure what to do there either.
Any advice appreciated, many thanks.
'When all else fails.......read the manual'
Since we installed our x506, all traffic is going over the leased line with the broadband currently unusued, while we decide the best way to utilise it. Currently I prefer the extra security over the extra speed. However we also use the leased line more and more for voice, so I want to get internet access off the leased line.
What I ideally want, is for all DMZ traffic (172.16.254.0, mapped to external IP's via virtual server on a 1 to 1 basis) to use the leased line, and for all LAN traffic (172.16.1.0) to use the broadband line. They are in separate security zones and have a default gateway of the port on the X506 to which that security zone belongs.
The device only lets you enter one default gateway, which is currently set to the leased line router...is there a way to do source based routing..or perhaps some workaround that will work efficiently, to send external LAN traffic over the broadband? I've seen some routers can send port 80 (for example) to a specific gateway...is there anything like that in the x506?
I'd also thought about whether load balancing will do it...putting the broadband router in it's own security zone also. As I say, the leased line does email and web traffic, so I presume that any requests to the website coming in from the leased line, will always go back out on that line? This is imperative, naturally. If I set the balance of say 20% to the primary link (leased line) and 80% to the secondary (broadband)...may that also work??
My other idea is to use a 3com router (5000 series) with 2 ethernet interfaces, although not entirely sure what to do there either.
Any advice appreciated, many thanks.
'When all else fails.......read the manual'