01-29-2004 07:25 AM - edited 02-20-2020 11:13 PM
Hello,
We currently have an ADSL connection with a ZyWall firewall with has limited upstream bandwidth. What we would like to do is to get an additional SDSL connection with 1MB in both directions that we can use just for hosting our mail server/vpn usage. General office usage would still be over the ADSL line, rather than the SDSL.
Our current ZyWall only supports one external WAN IP address. What I would like to do is have both the SDSL and ADSL routers connect to the 515 (via a switch/hub), and then have the 515 do NAT with one gateway address for our private lan on the ADSL, and setup a DMZ for the mail/vpn that used the SDSL. Does this make sense, and Is this possible?
02-01-2004 01:27 PM
Yes it makes sense and is possible.
02-02-2004 09:56 AM
I would also like the solution to this scenario. Can you forward me the fix for this?
Thanks,
Jason
02-02-2004 11:51 AM
Actually, this won't work so easily as it sounds. The Pix can only use a single default gateway. It also doesn't yet support source-based routing. Therefore, you won't have a mechanism to tell the Pix when to send the traffic out the SDSL vs ADSL even though you're NAT rules may perform what is necessary on the Pix. You'll need an intelligent routing device between the pick and the SDSL/ADSL connections.
Also, the return traffic will have to be contended with for inbound connections. In otherwords, the Pix will need to know to send the traffic back out the same circuit it was initiated on. One way to accomplish this is with source NAT on the external routers.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide