I don't see how an L3 switch is required here. Certainly you could solve this problem with one but it's not necessary. You can do all the routing with TMG if you want.
Why do you need separate IPs for the web servers given they're all being proxied through TMG, btw? Thanks, Brian Desmond [email protected] w - 312.625.1438 | c - 312.731.3132 From: John Gwinner [mailto:[email protected]] Sent: Monday, November 14, 2011 8:20 PM To: NT System Admin Issues Subject: New ISP - I have to route public IP's I just signed up with a new ISP for the office - we're getting 15Meg for the price I used to pay for 2 T-1's. Nice! Oddly though, I get a single IP in the range 216.2.69.x/30 and a default gateway. This isn't a T-1 or other telecom ish interface; they give me an Ethernet jack (comes out of an AdTran), with an IP stack on it. I ALSO get 5 (usable) IP's in the range 216.2.234.X/29. I have 3 public web servers with separate IP's I need to host on the Internet (they are firewalled/DMZ'd through Microsoft's TMG). The wrinkle: My ISP expects me to route my public IP's 'through' the 216.2.69.X gateway. Not just switch the 5 usable IP's, I have to route them. The 216.2.69.X is what the Adtran puts out (say .2 for 'my' router and .1 for the gateway). Behind that, I have the 5 useable IP's and I have to route that to the Adtran. My ISP said I needed a Level 3 switch; I have a couple of Dell 6248P's. Can I do this with a Dell 6248p? VLAN tagging wouldn't work, I don't think, as who knows if whatever web site we're surfing too, or whatever customer is looking at our public IP's, would support vlan tagging. This is a raw, public IP. Can I do a 'physical segmentation' on say 4 of the ports then setup a route from 216.2.69.1 => 216.2.234.64, 65, 66 and 216.2.234.64, 65, 66 => 216.2.69.1 with the Dell 6248's doing the routing? If the Dell PowerConnect 6248 cannot do this, can anyone recommend a router that can? Most of the Cisco, Adtran, etc. routers I've seen take a NIM card that take T-1's. I don't have a T-1, I'm getting a full 8 pair Ethernet cable with an IP stack already on it, it's just that I need to route my pubic IP's to their (my) public gateway IP with my own equipment. Any advice? Thanks, == John == ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
