Hello,

I'm doing a virtual laboratory in VMware EXSi 5.0 to test WAN Optimization with virtual appliances Silver Peak.  I want to simulate our customer environment which has a VPN router to receive the WAN network traffic and a Windows Exchange 2010 server. In the same way, my company has a VPN router and the clients which have to access to the Exchange server. This is a network diagram to explain the network and connections.

www.wanopt.net/Lab_WANOptimization_VPN_VRRP.jpeg

I'm simulating the routers with Vyatta which doesn't support PBRs. For this reason, I have to configure Silver Peaks in router mode with VRRP. The Silver Peaks would work as master while the Vyatta routers would work as secondary, both of them will share the virtual IP which is the same LAN gateway. Thus, if client 1 wants to access the Microsoft Exchange server, it will go to the Silver Peak_1 and then, Silver Peak will send the traffic to the Vyatta router_1. The Vyatta_1 router will up a VPN site to site with the Vyatta_2 router (they will encrypt the traffic between them) and it will send the traffic through the VPN tunnel.

In the other site, the Vyatta_2 router will receive the encrypted traffic, then this will decrypt the traffic and will pass it to the Silver Peak_2. It has to pass the traffic to the Silver Peak, here is my question:

How can I assure that the Vyatta_2 router will send the traffic to the Silver Peak_2 instead to pass it directly to the Exchange server 2010? I was thinking to configure static routes on the router, but these have a administrative distance higher than the connected routes so in this case, the router would prefer to send the traffic to the server directly.

Someone can help me with this configurations?

Thanks for your help,