Routing MPLS network and Internet traffic through same WAN/X1 interface

Description

Scenario:

MPLS and WAN on same interface. Have X1 as primary WAN connection, want to route MPLS traffic over the same interface.

Resolution for SonicOS 7.X

This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.

Step 1: Create a NAT to NOT translate the traffic when going to MPLS remote network, default route will take care of that and send it over to X1 default gateway.

Navigate to Policy|Rules and Policies > NAT Rules.

Image

Step 2: ISP router should be configured to receive traffic for Internet with public ip as well as with private ip destined for MPLS remote network.

Step 3: Add a Access Rule from WAN to LAN.

Navigate to Policy|Rules and Policies|Access Rules.

Image

Step 4: Click on Add.

Resolution for SonicOS 6.5

This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.

Step 1: Create a NAT to NOT translate the traffic when going to MPLS remote network, default route will take care of that and send it over to X1 default gateway.

Navigate to Manage | Rules > NAT Policies.

Image

Step 2: ISP router should be configured to receive traffic for Internet with public ip as well as with private ip destined for MPLS remote network.

Step 3: Add a Access Rule from WAN to LAN.

Navigate to Rules > Access Rules.


Image

Step 4: Click on Add.

Resolution for SonicOS 6.2 and Below

The below resolution is for customers using SonicOS 6.2 and earlier firmware. For firewalls that are generation 6 and newer we suggest to upgrade to the latest general release of SonicOS 6.5 firmware.

Step 1: Create a NAT to NOT translate the traffic when going to MPLS remote network, default route will take care of that and send it over to X1 default gateway.

Navigate to Manage | Rules > NAT Policies.

Image

Step 2: ISP router should be configured to receive traffic for Internet with public ip as well as with private ip destined for MPLS remote network.

Step 3: Add a Access Rule from WAN to LAN.


Image

Step 4: Click on Add.

Related Articles

  • SonicOS 8.1.0 FAQ
    Read More
  • SonicWall GEN8 TZs and GEN8 NSas Settings Migration
    Read More
  • Getting started with SonicWall firewalls
    Read More

Categories

Firewalls
SonicWall NSA Series
Firewalls
SonicWall SuperMassive 9000 Series
Firewalls
SonicWall SuperMassive E10000 Series
Firewalls
TZ Series
not finding your answers?
Ask the Community