Announcement

Collapse
No announcement yet.

Route DMZ through WAN2

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Route DMZ through WAN2

    hello all
    i have asa5510 with wan1 and wan2
    i want the internal users to go through wan1
    also i want dmz servers to go through wan2
    my problem is when i configure static route of 0.0.0.0 to wan1 with metric 1 and another static route of 0.0.0.0 to wan2 with metric 2 the router always route through wan1 unless its not available
    how can i force dmz servers to wan2
    regards
    shai
    Good Luck

    Shai

    MCSE 2003+Security;MCSE 2003+Messaging
    HP ASE;HP AIS;HP APS

    So, from me to all of you out there, wherever you are, remember:
    the light at the end of the tunnel may be you. Good Day!

  • #2
    Re: Route DMZ through WAN2

    You can't configure two statics the same. Can you describe what you want to achieve with a bit more detail?
    If you have servers on one DMZ interface and clients on the inside interface then they will all use (assuming you have NAT or Static rules) the outside interface for external traffic. Do you want to publish the DMZ servers externally or just use them internally?
    cheers
    Andy

    Please read this before you post:


    Quis custodiet ipsos custodes?

    Comment


    • #3
      Re: Route DMZ through WAN2

      hi
      thanks for your reply
      i have a network lan with 172.16.x.x
      dmz network with 192.168.x.x
      i want to place ftp server in dmz
      because ftp fraffic is very havy, i want to connect another line to wan2 and configure the ftp to use this line and not the wan1 line that is dedicated to lan users
      i can do it if i buy another firewall, which i dont want to do
      i know that cisco has a cli command that checks the source network and route it to the specified destination ( policy based routing)
      the command is route-map but i dont know how to use it and i dont know if asa 5510 with software 8.03 support this command
      regards
      shai
      Good Luck

      Shai

      MCSE 2003+Security;MCSE 2003+Messaging
      HP ASE;HP AIS;HP APS

      So, from me to all of you out there, wherever you are, remember:
      the light at the end of the tunnel may be you. Good Day!

      Comment


      • #4
        Re: Route DMZ through WAN2

        There are some interesting comments here:
        http://www.experts-exchange.com/Hard..._22806946.html


        and a comment from lrmoore here that probably explains it better than I.

        http://www.experts-exchange.com/Hard..._22896853.html
        cheers
        Andy

        Please read this before you post:


        Quis custodiet ipsos custodes?

        Comment

        Working...
        X