«

I am trying to set up a static route on my router to my
firewall/gateway to an internal web server. The router lets say is
62.98.10.65 and the firewall inside the router is 62.98.10.67 and the
webserver behind the firewall is 10.0.0.22. I did an ip route command
62.98.10.70 (which is the external address for the webserver)
255.255.255.224 62.98.10.67 ( the gateway/firewall) before you get to
the inside. Which is 10.0.0.0. It is coming back with an error message
saying ip address and and mask are bad. Can someone please help! I am
new to this so any information will help

"Jim" <> wrote in message
news: om...
> I am trying to set up a static route on my router to my
> firewall/gateway to an internal web server. The router lets say is
> 62.98.10.65 and the firewall inside the router is 62.98.10.67 and the
> webserver behind the firewall is 10.0.0.22. I did an ip route command
> 62.98.10.70 (which is the external address for the webserver)
> 255.255.255.224 62.98.10.67 ( the gateway/firewall) before you get to
> the inside. Which is 10.0.0.0. It is coming back with an error message
> saying ip address and and mask are bad. Can someone please help! I am
> new to this so any information will help

Jim,

First, you shouldn't need to add a route. The addresses 62.98.10.65,67,70
are all on the same network, based on the 27 bit mask you listed. The
router is fooled by NAT into thinking the webserver is sitting on the same
network. If you wanted to route to it directly without the firewall doing
NAT, then you should route to the 10 network, not 62... That said, the
format is wrong. When entering a route you need the first parameter to be
the network address, which is the first address in the subnet (not just any
address in the subnet). Your command would read:
ip route 62.98.70.64 255.255.255.224 <nexthop>

Hope that helps,

Jim