Separate Internet and LAN Network Traffic

Unanswered Question
Apr 1st, 2008

I have a couple of branch offices that currently routes all traffic to the corporate office. Is there a way to separate Internet traffic from LAN traffic that come from the branch office to the corporate office?

In one branch office we have added a second T1 for Internet traffic and the other we have added a DSL line. The branch office with the T1 we have a web filter connected to a PIX515E which is connecting to the T1. I would like to direct Internet traffic thru the web filter to the PIX out to the new T1 line.

The other branch office we DSL modem connected to the router and I would like to send Internet traffic to the DSL modem without distrusting LAN traffic to the corporate office.

Any assistance would be helpful.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
evsrajatgupta Tue, 04/01/2008 - 07:32

Hi keyyo0200,

You can use Policy base routing in this case.

With the help Policy base routing you can set different next hop for different traffic base on the destination or source of the traffic.

Please rate.

Rick Morris Tue, 04/01/2008 - 09:54

Based on what you sent it appears like you could use routing statements.

ip route

then add specific routes as you have listed to the specified network of the destination/nexthop.

for example.

Traffic from

ip route

This will take any traffic destined for this network and force it out to the as the next hop.

the all zero's route will send everything else out to the internet.

keyyo0200 Tue, 04/01/2008 - 10:17

I would like to divert the Internet traffic to the webfilter and thru the PIX to the internet.

LAN traffic to corporate offic example:

ip route

Internet traffic example:

ip route

Is this want you are talking about.

Rick Morris Tue, 04/01/2008 - 10:19


Basically whatever your default routes point to that eventually get to the internet is where you want the all zero's route.

Allother traffic will be pointed directly out to the other route.

Rick Morris Wed, 04/02/2008 - 09:08

I see that there was a rating given to someone that said to do the same thing I provided but not sure if it resolved your matter or not.

Please confirm if your issue is resolved or if you have questions still.



sanjay.khurana Tue, 04/01/2008 - 23:07

Hi Bryan,

as per your network diagram, u can do one thing in your router just define default route toward Barracuda Web Filter & Barracuda Web Filter must have a Default G/W toward Pix.

like this

PC->Default G/w - Router Default G/W -Barracuda Web Filter Default G/w - Pix Default G/w - Internet.


This Discussion