We have several remote sites using PIX 501's back to cvpn 3015--works great. We would like to implemement a backup peer device in HQ on isp B (testing with just a PIX 501)...PIXs are default gateway for remote sites, and 3015 is in parallel with our firewall in HQ. We use static routes on an internal layer 3 switch to route through 3015 to remote sites. How would we be able to route internally to backup PIX (or concentrator if we get another)? I have an old 2500 I could use internally, if necessary, since the switch is non cisco and RIP / static routing is buggy on it.
Thanks much in advance!
You could try object tracking on an inside router.