are these routes the same

[mikeleahy]

hi, a quick question. we have 2 buildings joined over a bip reach circuit that is using 2 routers provided by eircom that we cant change the config on. if i set all pcs to use our cisco firewall as their gateway and put a route on it that says any traffic destined for the other site goes through eircoms router, is that the same as making every pcs gateway the ip address of the eircom router and putting a route on that that sends default traffic out through our cisco firewall and only traffic for the other office over the wan link. i think they are but are there more hops involved ???? any help would be good please

 

[jneiberger]

1. We need more information about how all of this is connected. Where is the firewall in relation to your PCs and your Eircom routers?

2. The default gateway on the PC should be a device on the same LAN. Are your PCs on the same LAN as the firewall and router?

John

 

[mikeleahy]

john

sorry, the firewall is on the lan also. router is on the same lan also. im just concerned that there might be an extra hop for the wan traffic.??

 

[dk87]

Let's say that your LAN ip range is 192.168.1.0/24, your Cisco router is 192.168.1.1,your Eircom router is 192.168.1.20, and you set up your Cisco as the gateway. The other building's ip range is 192.168.2.0/24. When a workstation attempts to connect to a device that is not on its LAN, it will go to the default gateway (in this case the Cisco) to learn the route.

If the workstation is looking for a machine in the other building (192.168.2.x), this address is not on the same LAN as the workstation. The request is forwarded to the Cisco router, which responds that the correct path is to 192.168.1.20 for the 192.168.2.0 subnet. The client then redirects to the Eircom router for its traffic. It also adds and entry to its local routing table. The next time the client looks for a machine on the 192.168.2.0 subnet, it no longer goes to the Cisco, since it now knows of the other route. It will go directly to the Eircom.

When the client is powered off, all learned routes are forgotten.

 

[lambent]

cisco firewall? PIX?

And sounds like you're doing one-arm routing on your firewall (i.e. routing inbound and outbound traffic at the same interface). If you're really using PIX, then I don't think this will be working well.

 

[mikeleahy]

our cork site is on 192.168.1.x and dublin is on 192.168.0.x/ ip of eircom router is 192.168.1.1 and 0.1 respectively. We have cisco 837 on either site for internet access and vpn authentication for users from outside. What i plan is this

1. everyones gateway will be cisco i.e. 192.168.1.254 and 192.168.0.254
2. Default route on cisco will be ip route 0.0.0.0 0.0.0.0 dialer 1
3. extra route will be ip route 192.168.0.0 255.255.255.0 192.168.1.1 and vice versa in dublin
4. i would prefer to add the routes to the routers on the end of the wan circuit but i cant as they are managed netopia routers from our isp so i think this is my only choice???

any better ones.budget is limited