I have two offices each with their own subnet. A perimeter firewall
at each location is the default gateway and also provides a
site-to-site VPN. I’m adding a private line between the offices with
a router at each end. I plan to use DHCP to update end nodes to the
new route path. And I will add the route to each of the nodes that
have static IPs (such as servers). But is there any other way I can
globally tell everything that the other subnet is now available
through the router instead of the default gateway?
I have two offices each with their own subnet. A perimeter firewall
at each location is the default gateway and also provides a
site-to-site VPN. I’m adding a private line between the offices with
a router at each end. I plan to use DHCP to update end nodes to the
new route path. And I will add the route to each of the nodes that
have static IPs (such as servers). But is there any other way I can
globally tell everything that the other subnet is now available
through the router instead of the default gateway?[/color]
default gateway should do that itself.
In addition to forwarding the packet to the router, it should send a
icmp redirect packet to the sender telling it to send future packets
direct to the router.
Be aware though that some devices (notoriously cisco ASAs) not only
don’t do that, but won’t route traffic back out the same interface it
came in on without some ruleset fudging…
On Thu, 17 Jul 2014 12:52:10 GMT, Dave Howe DaveHowe@invalid.dom
wrote:
[color=blue]
On 17/07/2014 13:37, KeN Etter wrote:[color=green]
I have two offices each with their own subnet. A perimeter firewall
at each location is the default gateway and also provides a
site-to-site VPN. I’m adding a private line between the offices with
a router at each end. I plan to use DHCP to update end nodes to the
new route path. And I will add the route to each of the nodes that
have static IPs (such as servers). But is there any other way I can
globally tell everything that the other subnet is now available
through the router instead of the default gateway?[/color]
default gateway should do that itself.
In addition to forwarding the packet to the router, it should send a
icmp redirect packet to the sender telling it to send future packets
direct to the router.
Be aware though that some devices (notoriously cisco ASAs) not only
don’t do that, but won’t route traffic back out the same interface it
came in on without some ruleset fudging…[/color]
Thanks Dave. I’m using Barracudas. I’ll look into that.