Routing/WAN
-
Hi folks,
A quick question here just to cover off how this works...
I have two leased lines, x.x.x.x and y.y.y.y, my firewall is set to route traffic from x.x.x.1 -> internal a.a.a.34 and y.y.y.1 -> internal a.a.a.34.
Traffic from a.a.a.34 is allowed to go out of both x.x.x.x and y.y.y.y to Internet, but is set as primarily to go out based on x.x.x.x and only use y.y.y.y when the first is unavailable.
When both are on and available, if traffic comes from y.y.y.y will the server response from a.a.a.34 route via y.y.y.y (as thats where the initial connection came from), or would the firewall route the response out through x.x.x.x as thats the servers primary path unless the line is down?
Hope that makes sense,
Jim -
@jimmy9008 I know that Ubiquity routers need pinning turned on in order to make outgoing connections use the same one the request came in on. I don't know about most others, I'd assume that they would at least have the option if they have multiple WAN ports.
-
I'm using a Watchguard M300
-
Opened case with Watchguard
-
I believe what you're looking for is policy based routing -- Watchguard speak.
Since you opened a ticket, bring that up. They'll know. -
This is what we use. PBR says the default route for the server is x.x.x.x. < thats fine.
What im asking is if the communication comes through y.y.y.y will PBR be ignored and the message transverse back through y.y.y.y as the source? -
@jimmy9008 said in Routing/WAN:
This is what we use. PBR says the default route for the server is x.x.x.x. < thats fine.
What im asking is if the communication comes through y.y.y.y will PBR be ignored and the message transverse back through y.y.y.y as the source?I don't think that PBR will allow the override unless your policies allow for your traffic to come in on y in the 1st place. Without seeing the behavior / logs, I wouldn't know.
-
@scotth
Traffic is allowed on x and y. I know that, lets see what support say. Its the other direction i'm wondering. Thanks though.
