03-21-2008 11:19 AM - edited 03-11-2019 05:20 AM
Say you have three interfaces on a firewall such as a PIX. Two of the interfaces are WAN links, (broadband internet access, different ISP's) and one is your LAN. The LAN interface address is what your LAN uses as its gateway. What determines which WAN interface internet traffic initiated form the inside goes to, assuming you permit the web traffic for both?
Would you have to choose which one by setting up NAT, Routes, etc, or could you enable LAN users to access both, thereby having a failover option in case one WAN link goes down?
Solved! Go to Solution.
03-21-2008 12:40 PM
You would setup one as primary ISP link and the second one as a backup. You cannot load balance traffic out both interfaces. Point the default route out via the primary link and another default route with a higher admin distance via the second link. Set NAT rules and may want to configure IP SLA to track the availability of the next hop via the primary link.
HTH
Sundar
03-21-2008 12:40 PM
You would setup one as primary ISP link and the second one as a backup. You cannot load balance traffic out both interfaces. Point the default route out via the primary link and another default route with a higher admin distance via the second link. Set NAT rules and may want to configure IP SLA to track the availability of the next hop via the primary link.
HTH
Sundar
03-24-2008 07:01 AM
Very good thanks!! I'll start figuring that out.
03-24-2008 08:26 AM
This is it here. Unfortunately I dont think think my 6.2 ver PIX supports it. UGH.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide