• November 24, 2020, 10:57:32 AM
Welcome, Guest. Please login or register. Registration is free.
Did you miss your activation email?

Author Topic: VLAN default gateways  (Read 1685 times)

0 Members and 1 Guest are viewing this topic.

Offline matt.standing

  • Rookie
  • **
  • Posts: 16
VLAN default gateways
« on: August 12, 2015, 08:34:26 AM »
I am routing several vlans between two AVAYA ERS 4526GTX-PWR switches. Each VLAN needs a default route to redirect traffic such as SFTP directly out to a different local interface on the firewall. Is there a way to add a gateway of last resort to a vlan interface individually or should I use the "dirty" side of the firewall as a default route in the global configuration?


Offline Telair

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 965
Re: VLAN default gateways
« Reply #1 on: August 14, 2015, 04:56:43 PM »
Typically the last entry in your routing table should be the 0.0.0.0/0 route pointing to your Internet firewall.  So if there is no specific route specified before it, it is the "default route" of last resort.  Then it's up to your firewall or Internet router to know what to do with any packet that shows up with no other route.

Offline matt.standing

  • Rookie
  • **
  • Posts: 16
Re: VLAN default gateways
« Reply #2 on: August 15, 2015, 03:54:09 PM »
The two clans each need a different default route as their gateways are different firewall interfaces so I can't use 0.0.0.0 0.0.0.0 x.x.x.x. I can redirect http traffic using a proxy but need to redirect other protocols.

Offline pat2012

  • Sr. Member
  • ****
  • Posts: 156
Re: VLAN default gateways
« Reply #3 on: August 28, 2015, 08:06:25 AM »
I could be wrong on this, but it sounds like you need VRFs - Virtual Route Forwarding.  Unfortunately that's not available on the ERS 4500s.  I know it's available on the ERS 8800 (license required) and possibly the VSP 7000s.

Failing that you may have to use the "dirty" Firewall interface as you mentioned.