07-02-2007 06:58 AM
I have a CSS in one armed mode sitting between the Internet Edge router and PIX firewall.
The edge router is getting a default route from BGP and distributes that into the Firewall via OSPF.
The firewall sees the Edge router as the default gateway from the distributed route.
Would it be possible to have the CSS (through OSPF) get the default route from the Edge router and advertise it to the Firewall?
The goal is to have the Firewall use the CSS as it's default gateway, rather than the Edge router, but it needs to be a dynamic route.
In turn the edge router would pass traffic through the CSS to the firewall.
The CSS would be an intermidiate hop between the router and firewall.
Is this something that the CSS is capable of doing?
And from a design perspective, it is something that could be an issue?
07-02-2007 09:52 AM
it should be possible read the following document: http://www.cisco.com/en/US/docs/app_ntwk_services/data_center_app_services/css11500series/v7.10/configuration/administration/guide/OSPF.html#wp1016018
07-02-2007 10:07 AM
Thanks,
I did see that document and played with it some last night.
I think it should work too, but was not sure if it was not reccomended by Cisco or not.
I have seen they they do not reccomend OSPF or RIP configurations, but I am only concerned with the default route and this would maybe solve the problem of any potential asymetric traffic flow.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide