Our company presently has a symantec firewall. It is planning to introduce an additional Linux firewall. The two fierewalls should work in load balancing fashion. The company would like to introduce a PIX device that would be external to the two firewalls and directly connected to the router of ISP. The PIX is intended as the first entry point for all incoming traffic. As an example when it receive http requests for 2 servers it would direct a request for server A to the Linux firewall and requests directed to server B to the symantec firewall. How can I acheive this goal? Is this solution plausible? Any suggestion and config examples are welcome.
yes, this can be done with two static commands. each static will translate one server address, you then need to configure the symantec firewall to respond to one translated address and the linux to respond to the other address.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...