Matthieu

Asked: 2009-08-12 23:26:07 +0800 CST2009-08-12 23:26:07 +0800 CST 2009-08-12 23:26:07 +0800 CST

Juniper SSG5 Firewall

I have a SSG5 firewall with some route based VPN. I have a LAN, a DMZ, an another net and WAN. How should I do to make DMZ use VPN and not LAN? I think it's a routing problem. But Source routing doesn't solve my problem.

It was easier on my old OpenBSD Box 'cause route where made by the system automatically. I think it was using Sthe VPN (SA/ProxyID) configuration to add configure them.

Thank U !

1 Answers

Voted

Best Answer

Maxwell
2009-08-13T00:21:28+08:002009-08-13T00:21:28+08:00
In ScreenOS, you can use PBR (Policiy based routing) which opers at the interface level to selectively cause packets to take different paths, PBR acls are processed in the first part of the route lookup. This should fit your needs.

Here's the online documentation for PBR routing un ScreenOs 61.0.
0

Juniper SSG5 Firewall

Ping a Specific Port

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What's the command-line utility in Windows to do a reverse DNS look-up?

How to check if a port is blocked on a Windows machine?

What port should I open to allow remote desktop?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?