Hi all
I have a question. I have 3 sites (SiteA, SiteB and SiteC). All these sites are connected with an MPLS. On ecah site, I have : dedicated firewall to protect Internet access, Juniper SSG320 to protect LAN access and Cisco router.
To redistribute my privates network on all devices, I use OSPF configured on my Juniper SSG320 with only one area. Our Exchange infrastructure is hosted outside on a privte clound provided by a provider. We access to our Exchange (hosted on a network 10.203.144.x/24 provided by provider) through 3 IPsec tunnel configured on our each site :
- 1 tunnel SiteA to Mail_Provider (users from siteA use this tunnel to connect Outlook client to Exchange server
- 1 tunnel SiteB to Mail_Provider (users from siteB use this tunnel to connect Outlook client to Exchange server)
- 1 tunnel SiteC to Mail_Provider (users from siteC use this tunnel to connect Outlook client to Exchange server)
Currently, I don't add 10.203.144.0/24 under my routing table and this netwrok is reachable through the default route on each site (0.0.0.0 goes to Internet through the Juniper Interface connected on my Internet firewall).
How I can add 10.203.144.0/24 on my Juniper routing table (with OSPF) and continue to use the default route on each site and to reach 10.203.144.0/24 through the IPsec tunnel configured on our Inernet access on each site (and not forward all traffic from siteA and siteB to siteC to reach my Exchange network ?)
BR