Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Two ISP routers

Hello there,

I have PIX 515 with 8 ports installed, I’ve already used 5 ports for DMZ configurations. I have an ISP router that connect the outside interface of the PIX. Everything works fine. I’m planning on adding additional ISP router dedicated to creating a VPN tunnel with a vendor. I don’t want to use the existing ISP router that the users use to browse the Internet. The new ISP router will be configured with 3 T1 lines. I will be terminating the tunnel on the VPN 3000 concentrator. The question is, There is only one outside interface on the PIX. The question is how do configure the PIX so it is a ware of the new ISP router. Do I use one of the remaining ports as an outside interface? I’m not really sure how to go about that,

Thanks.

2 REPLIES
New Member

Re: Two ISP routers

Use one of the other ports, but it won't be another "outside". There can only be one outside. Just setup another port as another dmz and use a static route. So if the remote vpn is 172.16.1.1 (for example), so a static route on the PIX of "ip route DMZVPN 172.16.1.1 255.255.255.255 x.x.x.x" where x.x.x.x is the IP of the new ISP router. You won't be able to do another default route, but you can statically route to the IP you need.

New Member

Re: Two ISP routers

Sounds great !!!!

Thank you very much !!!

93
Views
0
Helpful
2
Replies
CreatePlease login to create content