Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX redundancy

If I have 4 interfaces on my PIX535 is it possible to use two interfaces as inside and two as outside, ex. "inside", "inside2", "outside", "outside2" and then let the inside interfaces use nat for the same address space and let the the outside interfaces share the same global address pool?

I want to connect the PIX to two switches on both the internal and the external network for redundancy.

Is that kind of configuration possible?

1 REPLY
New Member

Re: PIX redundancy

If I understand correct, and assuming that interface 1+2 will be used for the outside and 3+4 for the outside. Also assuming 1+2 will be in the same subnet (e.g. 213.1.1.0) and 3+4 would be in the same subnet (e.g. 172.16.0.0), I believe that this will be impossible as the PIX IOS most likely will not allow you to assign the same subnet to two interfaces. Also because each interface has to have a security-level (e.g. outside =0 / inside=100), the PIX would become confused.

But if go ahead a setup a test-lab and make it work I would be much obliged if you could drop me a line or two...

Best regards

Goran

83
Views
0
Helpful
1
Replies
CreatePlease login to create content