I have two WAN connections, a static IP T1 line and a DHCP RoadRunner cable connection. I have currently setup TMG with the static T1 connection using a 3-Leg Perimeter setup and all is working fine. I've been reading a lot about ISP redundancy and I would like to implement it into my TMG server. Instead of a failover/load balance mode, is it possible to just route a group of private IP's to use the RoadRunner connection? I have two subnets that download a lot of data and I would like them to be able to benefit from the faster download speeds of a cable conection to help free up some bandwidth.
Thank you,
< Message edited by FSPL -- 24.Jan.2011 1:40:05 PM >
Posts: 271
Joined: 5.May2001
From: Redmond, WA
Status: offline
Enhanced NAT is the solution for this question. In the network configuration, you can define Network Rules that apply to single or multiple source-IPs or even whole subnets.
Thanks for the help Jim, I apprieciate it. However, I'm still a little confused when using Enhanced NAT with a DHCP address.
1.) Since the cable connection is DHCP, how does TMG know which address to NAT if the IP is dynamic?
For example: I created a network rule, added my source computer sets that should use the cable connection (172.16.0.10-172.16.0.20), for the destination source I chose the RoadRunner Network (its the adapter thats has the cable connection), for the relationship I selected NAT, for NAT Address Selection I selected "Use the specified IP address" and slected the cable modem IP from the drop down menu. But since the IP is DHCP, wouldn't I have to create a new rule every time the address changes? How does TMG know to use a new address when it changes?
2.) Do I need to create static routes?
Thanks again!
< Message edited by FSPL -- 25.Jan.2011 12:07:35 PM >
Posts: 271
Joined: 5.May2001
From: Redmond, WA
Status: offline
You can't select a specific NAT IP on a DHCP-configured interface - you have to leave it as "default IP address". Don't start playing in the routing table - it'll only confuse the issue.
I 'kind of' got this to work. I followed your steps and the two subnets was able to get an internet connection from the cable modem only when the T1 adapter was disabled. My TMG server doesn't seem to like it when I have both WAN connections enabled. It's almost like it can't decide which connection to use. As of now, both metrics on both adapters are set to automatic. Would it make a difference if I switched one of them to one and the other to two? If it helps, I can link some screen shots of my setup.
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [Threat Management Gateway (TMG) 2010] >> General >> Routing With Redundancy 
Routing With Redundancy - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread