Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1924
Views
0
Helpful
1
Replies

ARROWPOINT loadbalancer and pix

rondo01
Level 1
Level 1

‎06-07-2001 11:33 AM - edited ‎02-20-2020 09:48 PM

what is the proper placement of pix considering im natting all my internal web servers, and the arrow point want to see the public address on the outside interface, where do i place my pix as to avoid problems and avoid haveing to add a million rules due to a config change because of the pix....help!!!

0 Helpful
1 Reply 1

mmellet
Level 3
Level 3

‎06-12-2001 01:10 PM

What I did is put a private address on the outside subnet of the PIX and another on the inside. I kept the real addresses on the DMZ interface and put all my servers and load balancers out there. I statically mapped my virtual server addresses to the outside of the PIX and I setup static route statements in the PIX and outside router to get these packets directed back and forth between the PIX outside interface and the Internet router. Now when my users inside want to go to www.mydomain.com they go out through the PIX to the outside router, then back in to the DMZ. The advantage, huge. No special DNS considerations, no ‘alias’ing on the PIX, not routing issues. It just works and works well.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card