Astaro can use one Active WAN with the other as a failover(do not know if that failover can be on another nic)....you can put multiple ips on the WAN nic but AFAIK ASL 5 does not support multiple active WAN nics.
Hi, if its not changed from V4 to V5 than ASL supports as many WAN links as you have. But: only one default route, and a WAN-link must not be everytime PPPOE it could be simply Ethernet. The thing is what you want with your WAN-link one for eMail one for www another for vpn no problem if you have your routing under control.
[ QUOTE ] Hi, if its not changed from V4 to V5 than ASL supports as many WAN links as you have. But: only one default route, and a WAN-link must not be everytime PPPOE it could be simply Ethernet. The thing is what you want with your WAN-link one for eMail one for www another for vpn no problem if you have your routing under control.
firebear
[/ QUOTE ]
that's what i tought.... indeed i can have just one default route so what you saying is get static routes for the others and it should work fine...right ?
ok after some fooling around with astaro static routes im still not able to get it work [:(] to do...
eth0 -> Internal LAN ip: 10.10.101.254/24 eth1 -> External ip number 1 assigned by ISP and has the default gateway also assigned by ISP and is called private_web eth2 -> External ip number 2 assigned by ISP and no default gateway and is called public_web eth3 -> External ip number 3 assigned by ISP and no default gateway and is called DNS_Server_1 eth4 -> External ip number 4 assigned by ISP and no default gateway and is called DNS_Server_2 eth5 -> Our DMZ zone ip 10.0.0.254/24
MASQ from internal to external net via ETH1 DNAT/SNAT rule one for server on DMZ (HTTP/HTTPS)
what i want is that people from the outside can connect via public_web (the one with no gateway) to my DMZ. How can i fix that with static routes ? as far as i know it should be something like this in the static route screen of ASL:
netword to add: public_web target network: DMZ net
Strange thing is that when i enable more then 1 "public" nic astaro is not able to connect to the internet anymore and im not able to connect from the outside to the box anymore. I figure that that has something to do with default route's etc.etc.
Main question here is how to setup the routes? and what am i doing wrong here...tnx for reading and helping in advance
private_web is used to give the internal lan access to the internet nutting more then that... the 2 dns servers are going to be the ones we want to use for prim. and sec. dns servers for our network. Hope this clears out the "odd" setup.
Conventionally, when IPs are assigned by an ISP, they are kept on the external interface, and DNAT rules are set up to internal network numbers on the other interfaces.
What are your routing rules? Have you set up a very precise mask on each of the interfaces, so that there is no overlap amongst them??
Conventionally, when IPs are assigned by an ISP, they are kept on the external interface, and DNAT rules are set up to internal network numbers on the other interfaces.
What are your routing rules? Have you set up a very precise mask on each of the interfaces, so that there is no overlap amongst them??
yup i know that it will be easier to put them in the DMZ and thats what we going to do...today im free of work so tomorrow is the day i will be configurating it... will let you know if that solves all the problems...tnx for helping anyway
