How can I know the way a PAM server with multiple NICs redirects the incoming traffic back to the network?

Document ID : KB000096488
Last Modified Date : 17/05/2018
Show Technical Document Details
Introduction:
In a scenario with a PAM server with multiple network cards it can be interesting knowing the way the incoming traffic to the PAM server appliance is redirected to the network, as we may need to change some routes to particular destination subnets for different reasons.
Question:
How can I know the way a PAM server with multiple NICs redirects the incoming traffic back to the network?
Environment:
A physical or virtual appliance PAM server of any version with multiple network cards.
Answer:
Basically PAM does not interact with the network traffic itself and delegates to the operating system the tasks of managing it.
With no other specific additional routes set, all the incoming traffic to the PAM server appliance is pushed back to the network through the default gateway. This means it will use the NIC with IP address belonging to the subnet of the default gateway regardless the incoming subnet.
If we need to reach a particular destination network through a specific route, we can set it in the 'Config / Network / Additional Routes'

In PAM 2.x user interface it looks like this:
 
Additional Routes PAM 2.8.4


In PAM 3.x user interface it looks like this:
 
Additional Routes PAM 3.1.1
Additional Information:
Please refer to the following link to learn more about PAM additional routes:

https://docops.ca.com/ca-privileged-access-manager/3-1-1/EN/implementing/configure-your-server/configure-network-settings/additional-routes

Please refer to the following link to learn more on IP routing tables:

https://en.wikipedia.org/wiki/Routing_table