Ok, here's our scenario:
1 Juniper SSG-5
1 Cisco 3840
2 Internet connections from two separate providers
1 Class C Public IP range
1 Class C Private IP range
All available ports on Juniper in use (1 available for project)
Our internet connections run into the Cisco, which is attached to one of the ports on the Juniper (eth0). Our private subnet runs into the Juniper (eth5). By default, all internet traffic passes into eth5 and out eth0, which gets nat'd using provider 1's public IP address. A policy based route is in effect on the cisco which will pass certain public IP's to provider 2. What I'd like to be able to do, is get the private subnet to run over provider 2's internet connection. How to do it, I haven't been able to figure out, since I only have 1 available eth port on the Juniper to do this project with.
What I've thought of so far:
1) Setup the eth port with a private IP, then somehow get it to NAT using the IP(s) from Provider 2, instead of the IP's from Provider 1, that way it'll get routed through the proper connection
2) Setup the eth port with primary/secondary IP's and then connect it to a switch with VLAN's, but that would mean the SSG would have to forward traffic out the interface it came in on, and I don't think that'll work
Anyone have an idea or approach I could look at for making this happen? Ideally I'd just use two interfaces, but I don't have any left, so it requires a little more creative thinking than I'm capable of.