Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
260
Views
0
Helpful
1
Replies

high availablility firewalls and edge router

wilson_1234_2
Level 3
Level 3

‎04-25-2008 05:27 PM - edited ‎03-11-2019 05:37 AM

We have two core 6509 switchs running HSRP.

We have two firewalls in active/standby roles and want to implement a high availablility structure with the core switches, firewalls and edge router.

In order to do this, I believe the inside interface of each firewall should go to each core switch, then have a seperate DMZ switch for each firewall, with redundant connections from the servers to each DMZ.

My question involves the Internet edge router and MPLS router.

Is there any way to have the Internet edge router have dual connection to the firewalls, and MPLS router?

How is this normally done?

Labels:
Preview file
48 KB
0 Helpful
1 Reply 1

rkalia1
Level 1
Level 1

‎04-26-2008 03:07 PM

Run HSRP between the 2 2900 switches you have there for redundancy between them. Connect these 2 switches together too. Connect the edge router to any one of these switches. On your active firewall put default route to the HSRP ip address configured for the 2900 switches. On 2900 switches you should have a default route to the edge router.

Raman

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card