ScreenOS Firewalls (NOT SRX)
Highlighted
ScreenOS Firewalls (NOT SRX)

Need Help : Routing 2 different LANs to 2 different internet providers

‎03-20-2018 05:35 AM

Hello evrybody,

i have juniper SSG20 , 

i want that the lan of VoIP uses an interface for lan who routes to a wan interface and the Data lan interface touted to another interface.

for exemple :

Ethernet 0/0 = internet : 55.55.55.54

Ethernet 0/1 = internet ip : 55.55.55.55

Ethernet 0/2 = voip lan : 10.0.0.1

Ethernet 0/3 = data lan : 192.168.1.1

and what i want to do is to route  the outgoing traffic of ethernet 0/2 to ethernet 0/0 and ethernet0/3 to ethernet0/1.

the current configuration is using only one untrust interface but that makes problems for the voice quality.

i wish that i well explained my problem , 

Thank you !

2 REPLIES 2
ScreenOS Firewalls (NOT SRX)

Re: Need Help : Routing 2 different LANs to 2 different internet providers

‎03-20-2018 09:20 AM

You can configure source interface based routing to route all traffic from eth0/3 to eth0/1

ScreenOS Firewalls (NOT SRX)

Re: Need Help : Routing 2 different LANs to 2 different internet providers

‎03-20-2018 12:06 PM

I would suggest moving the VOIP vlan and the new ISP into a second virtual router.  then they will be completely isolated from the current setup.  By default everything is in the trust-vr.  And there is also an untrust-vr already existing.

 

Create two new zone and assign them to the untrust-vr

assign the new ISP interface and the VOIP interface to these new zones

create the necssary policies to permit and nat the internet traffic for the new zones.

 

Steve Puluka BSEET - Juniper Ambassador
IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
http://puluka.com/home