Is there a way to do routing over several parallel Pix 515E firewalls?
I have a 6509 on the inside network, 3 Pix firewalls and a single 6509 on the outside that terminates GRE tunnels from remote sites.
This all needs to pass a large amount of Multicast traffic which is too much for one Pix to handle.
The remote sites also need to route to each other on the outside via the 6509. Curently I can get the multicast traffic to pass through the right Pix by using VRFs on the outside 6509 but then the remote site to remote site routing can't work because there is no connection between the VRFs..
If I get rid of the VRFs I end up with equal cost routes and no control over the multicast traffic. The Pix firewalls also see routes to the inside network on their outside interfaces (I am using OSPF).
Has anyone encountered this type of Pix routing problem before and how did they deal with it?
Or is it not possible?
The solution also needs to scale because eventually there will be more than 1Gb of multicast traffic coming in to the core.
Implicit routes are static routes based on the networks attached directly to the firewall device. You cannot change or delete these routes. These routes are never specified as part of the device-specific command set that is generated and deployed to a firewall device. In other words, they are not included in the command sets that are generated for a firewall device. They are discussed here to provide the full picture of the routing rules active on a firewall device,
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.