how granular are the routing tables?
Hi again,
I have several subnets in my local network and over the VPN (dd-wrt openvpn right now).
In a general sense, I'd want to route everything that is not my private subnets or on the other end of the tunnel via a NAT to the local internet, but I want granularity to change subnets to go via tunnel vs. direct (this will be even more of a concern with firewalla gold). How easy is it to alter iptables in Firewalls for custom needs?
Also does the openvpn server (for mobile devices) in Red/Blue have a maximum for mobile connected clients?
Thanks
-
Only fair.
site A subnet: 192.168.20/24 <-> Zattoo tunnel 1
|
site B subnet 192.168.21/24 <-> Zattoo tunnel 2
Zattoo (I am making this up right now, and it probably has changed), but say 21.2.5.0/24 is one of them - there are more and I haven't actually routed this way in a while, but it's nice because it covers all devices on the network.
Zattoo I have to route via different openVPN or PPTP tunnel than site A to B above.
I'd want the flexibility to at Site B route traffic for Zattoo via a separate outgoing openVPN tunnel to zattoo (not via site A)
or route via Site A who has its own tunnel to zattoo. Would both of these scenarios work with what in Firewalla blue/gold or would I even use a red? Internet speeds are 25 Mbps at Site A and 100 Mbps (but not used at full speed) at Site B.
At a min I'd want to be able to route 192.168.21.0 via the tunnel from A to B and 192.168.20.0/24 via the tunnel from B back to A and route zattoo from either side via the other or a separate tunnel (whichever gave the greatest performance or if it was possible to set up a failover from one route to the other?)
Outside OpenVPN clients (mobile) are typically 1-3 at both sites.
I hope this helps?
Please sign in to leave a comment.
Comments
3 comments