Quantcast
Channel: ScreenOS Firewalls (NOT SRX) topics
Viewing all articles
Browse latest Browse all 763

OSPF configuration

$
0
0

Hi all

 

I have a question. I have 3 sites (SiteA, SiteB and SiteC). All these sites are connected with an MPLS. On ecah site, I have : dedicated firewall to protect Internet access, Juniper SSG320 to protect LAN access and Cisco router.

 

To redistribute my privates network  on all devices, I use OSPF configured on my Juniper SSG320 with only one area.  Our Exchange infrastructure is hosted outside on a privte clound provided by a provider. We access to our Exchange (hosted on a network 10.203.144.x/24 provided by provider) through 3 IPsec tunnel configured on our each site :

- 1 tunnel SiteA to Mail_Provider (users from siteA use this tunnel to connect Outlook client to Exchange server

- 1 tunnel SiteB to Mail_Provider (users from siteB use this tunnel to connect Outlook client to Exchange server)

- 1 tunnel SiteC to Mail_Provider (users from siteC use this tunnel to connect Outlook client to Exchange server)

 

Currently, I don't add 10.203.144.0/24 under my routing table and this netwrok is reachable through the default route on each site (0.0.0.0 goes to Internet through the Juniper Interface connected on my Internet firewall).

 

How I can add 10.203.144.0/24 on my Juniper routing table (with OSPF) and continue to use the default route on each site and to reach 10.203.144.0/24 through the IPsec tunnel configured on our Inernet access on each site (and not forward all traffic from siteA and siteB to siteC to reach my Exchange network ?)

 

BR


Viewing all articles
Browse latest Browse all 763

Trending Articles



<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>