We are going to deploy two 3015's in seperate sites with seperate internet entry points and a backend WAN conecting both sites. I have some concerns regarding vendor LAN2LAN access.
If we suffer an interface failure on the internal interface of our network, i want to hairpin the vendor traffic back through a backup tunnel to our second site.
I want to know if the NAT we would normally apply to this traffic is applied on the packets on the inbound interface or the outbound internal interface. If i hairpin the traffic will the same NAT rules apply?
And finally can anybody see any further issues i may have with this solution?
(i have attached a diag to give you a better idea)
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...