Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
915
Views
0
Helpful
2
Replies

2 Pix's in Failover config working with BGP Peering

p.pierre
Level 1
Level 1

‎06-11-2002 09:41 AM - edited ‎02-20-2020 10:05 PM

Hi, i have two Pix's, one Active the other failover - pointing to two routers (each connected to a different ISP configured with HSRP. My question is, obviously the PIX cannot run any dynamic protocols except RIP (which is not an option). i have a static route pointing to the VIP, is this enough to ensure routing provided one of my links goes down? How will the Pix behave when on ISP goes down or on Router goes down? Obviously, we have a public AS which is configured on both internal routers which are outside the pix connected to the ISP's routers.

0 Helpful
2 Replies 2

olujide
Level 1
Level 1

‎06-11-2002 03:53 PM

Hi,

The pix firewall should be fine with this configuration. If a router fails or a link fails provided you have tracking configured on the routers to monitor the connection to the ISPs then this configuration should work fine. The pix will use the VIP as its default route which should be transferred from one router to the other incase of failures.

The following link provide a very detailed overview of configuring BGP across PIX firewalls and how to achieve redundancy in multihomed BGP and PIX environment.

http://www.cisco.com/warp/public/459/BGP-PIX.htm#intro

0 Helpful

p.pierre
Level 1
Level 1
In response to olujide

‎06-12-2002 06:03 AM

Thanks a million for you feedback!!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card