Thread Info
  • Locked Locked
  • Replies 3 replies
  • Subscribers 5 subscribers
  • Views 5786 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

multiple router/connection preferences?

B.R.O.

With multiple router/connections would you configure multiple external interfaces on the UTM or connect them to a switch and then to a single UTM interface?

 



This thread was automatically locked due to age.
Parents

  • We normally use one (logic) interface per router. If the router has to be a default gateway for the UTM you can't put them into the same network as someone has to balance the connections, what normally the UTM does in our setups. If a router is only for reaching several remote sites via VPN you could put them into the same network but then have to care about that the UTM cannot be outdriven connecting to the Internet from there.

    we normally set up this 'transfer network' between the core switch, the UTM's internal interface and the VPN router, and the default gateway router for the UTM to another interface (can be PPPoE, VLAN or Ethernet, depends on the internet connection.

  • in reply to kerobra_retired

     

    Let's assume you have 2 routers with 2 logical interfaces that are configured to be safe and secure by Cisco's VPN configuration.  If you have a choice of these 2 preferences which one would you pick?

     

     

    UTM , Router 1, and Router 2 have public ip addresses.

    --------------------------------------------------------------------------------------------------------

    Preference # 1 - UTM, Router 1, and Router 2 -> Layer 3 Switch -> Internet Router

    1.  Connect 3 devices to Layer 3 Switch

    2.  Set the IP of the Internet Router as the Gateway for the UTM, the Routers, and the layer 3 switch

    ----------------------------------------------------------------------------------------------------------

    Preference # 2 - For 2 routers that must have 2 logical interfaces to work through the UTM

     

    1. Configure WAN Bridge and enable proxy arp

     

    2.  Add 2 Additional Addresses that equal VPN Routers

    3.  Connect Internet Router and the 2 VPN Routers to the WAN Bridge.*

    *If you choice the this preference can the WAN Bridge be changed back to a Ethernet type without breaking any firewall configurations?

Reply
  • in reply to kerobra_retired

     

    Let's assume you have 2 routers with 2 logical interfaces that are configured to be safe and secure by Cisco's VPN configuration.  If you have a choice of these 2 preferences which one would you pick?

     

     

    UTM , Router 1, and Router 2 have public ip addresses.

    --------------------------------------------------------------------------------------------------------

    Preference # 1 - UTM, Router 1, and Router 2 -> Layer 3 Switch -> Internet Router

    1.  Connect 3 devices to Layer 3 Switch

    2.  Set the IP of the Internet Router as the Gateway for the UTM, the Routers, and the layer 3 switch

    ----------------------------------------------------------------------------------------------------------

    Preference # 2 - For 2 routers that must have 2 logical interfaces to work through the UTM

     

    1. Configure WAN Bridge and enable proxy arp

     

    2.  Add 2 Additional Addresses that equal VPN Routers

    3.  Connect Internet Router and the 2 VPN Routers to the WAN Bridge.*

    *If you choice the this preference can the WAN Bridge be changed back to a Ethernet type without breaking any firewall configurations?

Children