EFW Support

Support => General Support => Topic started by: argie01 on Friday 02 December 2011, 08:59:10 pm



Title: multi WAN and VLAN questions
Post by: argie01 on Friday 02 December 2011, 08:59:10 pm
Hi,

I'm testing Endian 2.4.1 and I need some help to configure it.
I configured 3 interfaces, each one connected to a diferent VLANs. So, these are my questions:

  1. Do I need to create VLANs on Endian, too? Because the VLANs I talk above are created on my main switch and on VMware, but not on Endian.

  2. I configured the zones green, red, and orange. But green zone is VLAN for servers, and I don't know how to tell to Endian that to get into the user's VLAN it has to use a gateway (i.e., my main switch as gateway). So, now to admin Endian I have to get into the web from a server, and I can't do it from my PC.

  3. Multi WAN: I need to configure 2 WANs. One of then (the main one), is on red zone. I'm planning to connect the other one to orange zone. I don't need to use both WAN at the same time, but I need to know how to configure orange zone as a backup WAN.  And a way to switch to it, just in case...

Thank you for your help.


Title: Re: multi WAN and VLAN questions
Post by: argie01 on Saturday 03 December 2011, 12:15:41 am
Hi again,

meanwhile I wait for an answer to the post above I did some configuration on EF:

1. I created a green an a red zone (I deleted the orange zone).
2. On "Network/Interfaces" I created another interface that is my backup WAN line (uplink1).
3. I disabled the main interface (just for test: I connected the backup WAN router to this new FW).
4. I created two static routes:

0.0.0.0/24    WAN_main_ip/32    Main Link
0.0.0.0/24    WAN_backup_ip/24    Backup Link

Then I wrote a route on my main switch to redirect a particular public-internet-ip to Endian FW. My hope here was that I could reach that public Ip using the wan backup link.
But it doesn't works.

I don't know why. Thank you for your help.

PS: One curious thing here is despite the routes I wrote on "Network/Routes (static)" I didn't see that routes on "Status/Network Status". The routes there are always the same... and I'm not sure that is correct.