All we did was re-ip our dedicated site to site routers with a routable ip address. So all our machines default to our firewall which then sends the traffic to the dedicated router.
When we got the Juniper firewalls, we initially had trouble getting the routes to work properly over the site to site connection (internal ip). We had to add persistent routes to the local workstations for the routing to route properly. The route we added was 172.17.16.0/24 through 172.17.0.1 (previous dedicated router IP) and vice versa. Now that we have routable IP's, we removed the persistent route and everything works great. Now for some strange reason the local route for the subnet is missing on some workstations. This may have been missing prior to the network changes... Jimmy From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Tuesday, October 25, 2011 4:06 PM To: NT System Admin Issues Subject: Re: local subnet routing issue What are the routing changes you recently made? That might provide the info we need to understand why this is no longer functional. ASB http://XeeMe.com/AndrewBaker Harnessing the Advantages of Technology for the SMB market... On Tue, Oct 25, 2011 at 6:26 PM, Jimmy Tran <jt...@teachtci.com> wrote: Hi All, We recently made some routing changes to our network in two of our offices. Some of the machines now, don't see its own local subnet properly. What happens is if the local routing table doesn't have 172.17.0.0/24 though its own NIC. When it routes, it will go to the firewall (default gateway) and then come back. If I manually add the 172.17.0.0/24 network as persistent, it can talk properly to machines on its network. Does anyone know why some of the machines aren't getting this route automatically? Would moving DHCP to a W2k8 server fix this? So far, this has occurred on W7 boxes. 2008 FFL/DFL DHCP is on a r2 server Thanks, Jimmy ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
