This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Leonard_Abril
Participant
‎2019-10-31 07:26 AM

Route a vlan through a wan and another vlan through another wan 

I have a scenario with two wan interface, and I need one of the vlan to travel through the other wan interface
0 Kudos
7 Replies
PhoneBoy
Admin
Admin
‎2019-11-01 01:20 PM

Without more details about your configuration, I'll say Policy Based Routing should be able to handle this.
0 Kudos
Leonard_Abril
Participant
‎2019-11-05 05:30 AM
In response to PhoneBoy

Could you tell me a sk where I can see an example since I tried but it didn't work. I appreciate your collaboration
0 Kudos
Nick_Doropoulos
Advisor
‎2019-11-05 08:05 AM
In response to Leonard_Abril

Hi Leonard,

Probably best to start with sk100500.

Let us know if you have any more questions.

0 Kudos
Leonard_Abril
Participant
‎2019-11-07 05:35 AM
In response to Nick_Doropoulos

The sk was helpful but I have a problem when I try to reach a different vlan does not work. Any suggestions to solve this problem

0 Kudos
mdjmcnally
Advisor
‎2019-11-07 07:17 AM
In response to Leonard_Abril

Whilst you can use a Source Based Route to default out the Second WAN link you will then need to put into place in the PBR routing for when want to connect to other VLANs within the Company, otherwise will end up going out over the Second WAN link.

0 Kudos
tnguyen
Employee Alumnus
Employee Alumnus
‎2019-11-07 03:40 PM
In response to mdjmcnally

If you want inbound traffic on a vlan interface to be forwarded on a specific wan interface, you can configure a PBR rule with the vlan interface as iif and the default route in the associated PBR route table with the nexthop of the wan interface.

0 Kudos
FedericoMeiners
Advisor
‎2019-11-07 03:52 PM

As stated before, PBR with source based routing + "Hide behind gateway" NAT settings for the desired prefix should do the trick.

If you cannot make it work please post traffic flow captures from fw monitor so we can see if the traffic is leaving the right interface and if it's coming back 🙂

____________
https://www.linkedin.com/in/federicomeiners/
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events