Académique Documents
Professionnel Documents
Culture Documents
What is routing?
Routing is termed as a process of sending packets from network of one device to another network
on a different device.
Configuration:
Step 1. Log on to Console through ssh / telnet.
Select option 3 Route Configuration in Main Menu to go to the Router Management menu.
Enable configuration mode and define static route by executing command from the command
prompt as below:
router> enable <cr>
router# configure terminal
router(config)# ip route <destination IP address/netmask> <gateway IP address>
for our example, destination IP address is the IP address of the Web server i.e. 5.5.5.5/32
and gateway IP address is the IP address of the gateway through which the requests are
to be routed i.e. 2.2.2.2
router(config)# write
Write command saves the route permanently in the routing table
Step 1: Go to Firewall > Host > Add and define a host i.e. IP address for the external server. You
can also add from within the firewall rule as shown in the below given screen shot.
Step 2: Go to Firewall > Create Rule to add LAN to WAN rule for the host i.e. external server
5.5.5.5
Configuration:
Step 1: Go to Firewall > Host > Add and define a host i.e. IP address for the external server. You
can also add from within the firewall rule as shown in the below given screen shot.
Step 2. Go to Firewall > SNAT Policy > Create to forward the entire outbound traffic from internal
mailer to the specified IP address. For our example, specify WAN Alias IP address - 2.2.2.5
Step 3: Go to Firewall > Create Rule to add LAN to WAN rule to forward the mail server traffic to
the external server through designated gateway after natting the packets.
Configuration:
To explicitly route the traffic of a particular host/network from a designated gateway, one has to
add host/network under the designated gateway.
Step 1: Go to System > Gateway > Manage Gateway(s) and define the all the gateways other than
the default gateway. Default gateway is defined at the time of Deployment.
Step 2: Go to System > Gateway > Manage Gateway(s) and click the gateway for which
host/network is to be added
Traffic from the specified host/network will be routed from the selected gateway.
Note:
If explicit source based routing is not defined then in above mentioned cases, the first return
packet (Syn + Ack) from mail server may be routed through either of the gateway, resulting into
incomplete 3-way handshake. But incase of TCP packet, firewall maintains session information
only when 3-way handshake is complete. Hence it is required to explicitly route such half open
connection from the gateway itself.
Routing Order
Cyberoam provides number of ways to define routes when configured to use multiple gateways.
When more than one route is configured, Cyberoam processes route in the following order:
1. Static route (Destination based route)
2. Firewall based routes (Source, Destination or Application based route)
3. Explicit source based route
4. Default Gateway Default gateway is defined at the time of deployment.