Destination routing (with policies)

  • Hi All

    I’m struggeling with a routing problem(incl policies). :mrgreen:

    My Issue is

    SiteA  SSG5 :  LAN  on trust-vr )
    Site B SSG140 LAN on trust vr) ( Untrust-vr) LAN

    Now,  there is a SIte to site vpn between Site A and Site B, and can ping Working!

    Site B routing and policies between the vr’s are also setup correctly, so can ping Working

    My problem is how to route from Site A’s to Site B’s inc policies  :?

    So before posting config etc, I would hear if someone could point me in the right direction?

    Thanks in advance


  • Hi Bobjp

    Thanks for the answer.

    I also had in mind, that it would only be the routing in the ssg140, but its not enough with a next hop to the untrust vr, but I will try it to night.

    somehow I think that I need a route and policy from the ssg5 over the vpn to the untrust vr lan…  but can’t seem to get it right…

    I’ll get back 😉

  • Sorry my answer was a bit out of point.

    The only thing you have to care about is inter VR routing and policy on SSG140, I think.

  • I don’t see any problems with the routing.

    Meaning, you can ping can ping, right?

    so SSG140 routes the traffic from to via, as long as the routes and policies exist.