Hi,
I am after configuring 2 ISP connections on my perimeter router; the connection from ISP A is to be dedicated for regular users internet access and for some servers' inbound access. On the other hand, connection from ISP B is dedicated for VIP users internet access and for VIP servers' inbound access.
I have a PIX FW running ver 6.3 behind the router. Now, as you know each ISP is giving a different public address range so what is the best configuration to control the traffic in the way I need ?
I have already tried to configure 2 connections b/ the router and the PIX, each is having the public range from different ISP, but since the PIX doesnt do source-based routing as in the router so I faced problems because always the traffic is routed to the default route which is in my case ISP A!!
I am thinking of configuring NATing for traffic intended for ISP B on the router itself on a loopback interface in the following manner:
-there is only one link b/ the router and the PIX which has ISP A public address
- A loopback on the router has ISP B public range.
- All the servers are on the same DMZ on the PIX
- Servers intended on ISP A will be NATed normally on the PIX iteself
- Servers and traffic intended for ISP B will be NATed 1st on the PIX and then on the router's loopback interface.
Please give me your recommendations and advise whether there are other scenarios for achieving what I am after or whether there is a way to achieve this on the PIX.
Thanks,
Haitham