We have two PIX 515 in a failover configuration at a data center and everything works great!
I would like to purchase an additional PIX 515 UR for Our office LAN. But before I do I need to know if it is possible to configure the PIX to do the following. We have both a T1 and high speed DSL connection at our office. I would like the PIX to be able to choose which one to use based upon wether they are up or not.
ie, if the T1 goes down or gets very slow I would like the PIX to then route traffic out the DSL interface and until the T1 is back to optimal. Is this a possibility with a PIX 515 with the max 6 interfaces? Or do i need to get a different device?
however, the pix will not be able to determine whether the next hop internet link is avaliable or not.
e.g. a dsl router will be deployed in front of the pix. such as www <--> dsl router <--> pix.
since the dsl router and the pix are directly connected, so pix outside interface will always stay up regardless the dsl internet link availability. in other words, pix will keep forwarding packet to both next hops regardless the internet link availability. you can't really rely on pix to handle the routing.
an alternative is to setup the routing on one of the routers. e.g. pix has the t1 router as the default gateway, then it's up to t1 router to re-route packet to the dsl router as ios has feature to determine the internet link availability (e.g. saa, rtr).
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :