If you have routers on your interfaces and if you want to access the computers attached to the router, you need to configure static routes on the Tacitine security appliance on the Routing /Load Balance page. The static route policies will create static routing entries that make decisions based upon source address, source netmask, destination address, destination netmask, service, interface, gateway and metric.
In the above example: a NAT-enabled SonicWall UTM appliance is configured with a LAN IP of 192.168.100.1 / 255.255.255.0 and the computers on the LAN network are on the similar IP range. The IP address of the local router is 192.168.168.254 /24 with the Gateway IP as 192.168.168.168, which connects to another network numbered 10.10.20.x
- Login to the Tacitine. (If you are configuring the Tacitine for the first time, the default Lan IP is http://192.168.100.1) and default username : admin & Password : admin99
- Click the Configuration > Routing /Load Balancing tab.
- Click the Static Routing > ADD
4. Save > Restart Services
- The destination network and mask must define a logical subnet which doesn’t overlap the LAN subnet. The gateway must be local to the LAN.
- The router at 192.168.100.254 must have a default route pointing to the firewall’s LAN IP address (192.168.100.1) for the secondary subnet to be able to access the internet through the tacitine connection.
- You can also establish static routes for the WAN, DMZ and additional interfaces as applicable, but only if the gateway router involved is a second router, not the main WAN Gateway router, for which you will not need static routes.