Re: Summary Route Question

On Dec 29 2008, 1:51 pm, Trendkill <jpma...@xxxxxxxxx> wrote:
On Dec 29, 4:06 pm, tman <naves....@xxxxxxxxx> wrote:





I have a layer 3 switch that acts as my central router.  It has
several BVIs that have IP addresses for my internal subnets.  All my
internal networks are 192.168.x.x 255.255.255.0.  I have a default
route that points to my firewall for Internet connectivity.  I also
have one other static route that points to an internal router that has
two ethernet interfaces, both of which are in the 192.168.x.x
255.255.255.0n range.

My company has been acquired by a larger company.  We have a WAN link
installed that connects to their network.  They sent my a list of
subnets to add to my layer 3 switch so their network will be available
to us.  The routes consist of a couple of host routes, a half-dozen
subnets in the 192.168.x.x range, none of which conflict with my
present addressing scheme.  They also included a large number of
subnets in the 10.x.x.x/16 and 10.x.x.x/24 range.

The WAN link has static routes pointing to all of my internal
subnets.  It will also have a default route pointing to a router on
the larger company's network.

I will configure a spare FastEternet port on my layer 3 switch with an
IP address and mask on the same network as the Ethernet port on the
WAN link.  I will add the following static routes to my layer 3
switch:

static routes to hosts
static routes to 192.168.x.x networks

The next hop router for these will be the Ethernet port on the WAN
link.

I thought to minimize the size of the routing table on my layer 3
switch, I would configure a static summary route to the 10.x.x.x
subnets on the other side of the WAN link:

10.0.0.0 255.0.0.0 pointing to the Ethernet port on the WAN link.

Since I have no 10.x.x.x subnets on my side of the WAN link and there
are no 10.x.x.x subnets on the Internet, I thought this would be a
good strategy.

Is this summary route done correctly?  Any suggestions will be
welcomed.

Thanks.

Short answer is yes since 10.X is not publicly routed, it is perfectly
acceptable to use 10.0/8 as your summary to their networks.  However,
and since there is no overlap of your addressing, why not just turn up
their routing protocol on your external interface and allow dynamic
routing?  If there truly is no overlap, I don't see any reason to
avoid dynamic routing and using manual.- Hide quoted text -

- Show quoted text -

Not my call.

Thanks for your comments.
.

Relevant Pages

  • Re: One computer on 2 networks
    ... On the server take the new "internet Nic" and set it up properly for the ... Create a static route in the OS's routing table that uses the LAN Router ... don't work in the Network Admin Dept. I'm a developer. ...
    (microsoft.public.windows.server.networking)
  • Re: One computer on 2 networks
    ... don't work in the Network Admin Dept. I'm a developer. ... I am working on a project where we need to expose to the internet the ... a Web Server, VPN Server, Remote Desktop. ... So the correct route add syntax would be: ...
    (microsoft.public.windows.server.networking)
  • Re: Weird net connection problem
    ... Lets say that you have your own /24 network that ... The internet knows nothing. ... my sloppy writing - I mean the set of routers that go to make up ... for the high-speed route from the Tunnel to St Pancras not only cut the ...
    (uk.comp.sys.mac)
  • Re: [ubuntu-za] network problem
    ... i was having troble with my network, but i could conect to the ... when i rebooted i could not connect to the internet:< ... You can type "route" at the ... I think) to see which interface is used to send information out. ...
    (Ubuntu)
  • Re: How to add static routes to ISA Server
    ... I think that the route add should be: ... you want it to represent the whole network and also the subnet should be ... If you want to make your VPN clients like internal users, ... internal network" and "Internet access") so your VPN clients will be ...
    (microsoft.public.isa)