Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1920
Views
0
Helpful
2
Replies

stateful routing?

tcherkon
Level 1
Level 1

‎11-28-2005 06:20 AM - edited ‎03-03-2019 12:56 AM

Hello!

We have a network that is connected to two ISPs through two PIX firewalls. Those firewalls are connected to a single router. Also we have a server connected to the same router.

Then a number of external users make their connections to our server from outside. Some of those connections go through ISP1 and PIX1 while the others go through ISP2 and PIX2.

The question is: how to configure router so that it route backward traffic to the right interface?

For instance: if incoming packet was from ISP1 then reply from server to client should go through PIX1 as well. If the router send reply through PIX2 the session will break hence PIX1 cannot track the session.

How to overcome the problem?

Labels:
0 Helpful
2 Replies 2

leonvd79
Level 4
Level 4

‎11-30-2005 02:17 AM

Cluster your firewalls. I don't know if this is possible with PIX firewall. Nokia/Checkpoint is able to do this. The router has a source/destination and does not track the firewall it received it packets from.

0 Helpful

tcherkon
Level 1
Level 1
In response to leonvd79

‎11-30-2005 02:50 AM

Clustering is not an option. Because PIXes are far away from each other.

0 Helpful
Customers Also Viewed These Support Documents