Edmore just realized something else. I am sure the DSL device is doing nat so there should be no reason for you to do it on R1 just use PBR to forward WWW and FTP traffic to that device.
CCIE # 23962 (SP)
Sent from my iPhone 3GS
On 25 Sep 2010, at 9:49 PM, Edmore Chingwena <chingwenaed_at_gmail.com> wrote:
> hi Experts
>
> I wish to check the following
>
> Requirement is to push all web and ftp traffic via isp1 and all the other
> via isp 2. Only 1 ethernet interface on R1. Is there a way around this using
> policy based routing
> If I am to nat how will i overload
>
> 10.1.3.253/24
> ::::::::::::::::--------------------O----->FW1ISPA ADSL-Sonic Firewall--www
> : L2 Switch :
> ::::::::::::::::--------------------O----->R1ISPB dedicated link Cisco
> 10.1.3.254/24
>
> !
> interface FastEthernet0/0
> ip address 10.1.3.254 255.255.255.0
> ip policy route-map adsl
>
> route-map adsl permit 10
> match ip address 100
> set ip next-hop 10.1.3.253
> !
> access-list 100 permit tcp 10.1.3.0 0.0.0.255 any eq www
> access-list 100 permit tcp any 10.1.3.0 0.0.0.255 eq 443
> access-list 100 permit tcp any 10.1.3.0 0.0.0.255 eq www
> access-list 100 permit tcp 10.1.3.0 0.0.0.255 any eq 443
>
> Is there a way to get the above to work without doing anything on the
> firewall
>
> What else do i need to add to this to get users behind switch to browse in
> same subnet as cisco router and firewall
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Sat Sep 25 2010 - 23:50:58 ART
This archive was generated by hypermail 2.2.0 : Fri Oct 01 2010 - 05:58:06 ART