Nortel Networks WEB OS 212777 User Manual
Page 332
Web OS 10.0 Application Guide
332
n
Chapter 13: Firewall Load Balancing
212777-A, February 2002
4.
Configure static routes on the primary dirty-side Web switch.
Four static routes are required:
n
To primary clean-side IF 2 via Firewall 1 using dirty-side IF 2
n
To primary clean-side IF 3 via Firewall 2 using dirty-side IF 3
n
To secondary clean-side IF 2 via Firewall 1 using dirty-side IF 2
n
To secondary clean-side IF 3 via Firewall 2 using dirty-side IF 3
N
OTE
–
Remember, IF 2 is being used on all Web switches whenever routing through the top
firewall, and IF 3 is being used on all Web switches whenever routing through the lower fire-
wall.
The static route
add
command uses the following format:
add
<destination address>
<dest. mask>
<gateway address>
<source interface>
This example requires the following static route configuration:
N
OTE
–
When defining static routes for FWLB, it is important to specify the source IP inter-
face numbers.
5.
Make your changes take effect.
>> # /cfg/ip/frwd/route
>> # add 10.10.3.1 255.255.255.255 10.10.2.3 2
>> # add 10.10.3.2 255.255.255.255 10.10.2.4 3
>> # add 10.10.3.11 255.255.255.255 10.10.2.3 2
>> # add 10.10.3.12 255.255.255.255 10.10.2.4 3
>> # apply
>> # save
>> # /boot/reset