Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 2 subscribers
  • Views 3319 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Policy Based Routing in V7.001 impossible? [using 2 dsl connections]

philippg
Hello folks,

last night we set up a as 7.001 to change our old asl6 system. everything worked fine exlcluding policy based routing. 
ife looked aroudn the hole forum, but i cant find any kind of solution only same probs:

http://astaro.org/showthread.php?t=17959
http://astaro.org/showthread.php?t=17811
- and so on

neither the knowledgebase cant help us.
http://portal.knowledgebase.net/display/2n/kb/article.asp?aid=236926

what we want to do:

All traffic is sent to ASL 7.001. Only HTTP, HTTPS and FTP traffic should be seperated moved over out ADSL connection. Remaining traffic should be switched via SDSL into the internet. with asl v6 every think works fine. all policies and settings from asl v6 are migrated manually 1:1 to asl v7
here what weve done last night:

were using 2 dsl connection
- External_SDSL -> eht1 [Standard GW -> pppoe]
- External_ADSL -> eth2 [192.168.2.*** -> ADSL Router]
- DMZ              -> eth0 [10.10.0.*** -> DMZ/LAN]

then we set up the ADSL_Router Objekt like this one:

- ROUTER_ADSL 192.168.2.***

After this we created three new policy based rules like:

- First One:
Route Type: Gateway router
Source Interface: >
Source Network: DMZ
Service: FTP
Destination Network: ANY
Gateway:ADSL_Router

- Second:
Route Type: Gateway router
Source Interface: >
Source Network: DMZ
Service: HTTP
Destination Network: ANY
Gateway:ADSL_Router

- Third:
- First One:
Route Type: Gateway router
Source Interface: >
Source Network: DMZ
Service: HTTPS
Destination Network: ANY
Gateway:ADSL_Router

Then weve set up a Masq:

- DMZ (Network) External_SDSL
- DMZ (Network) External_ADSL

And tata. nothing was working. no http, no http neither ftp. after disabling our 3 policies we can surf. but while having a look aht whatismyip.com weve seen, that were surfing over SDSL. And that should not really be possible.

what hapend with v7.001? did we set up sth wrong. is policy based routing still possible? were no out of ideas, maybe you can give us a helpfully hint.

best thanks for reading and king regards

Philipp


This thread was automatically locked due to age.
Parents Reply Children
No Data