Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
400
Views
0
Helpful
2
Replies

PIX Firewall failover

vsobrun
Level 1
Level 1

‎05-19-2005 04:06 AM - edited ‎02-21-2020 12:09 AM

Hi. I have two PIX 515E firewalls. Each has a connection to a router via the outside interface and on the inside to two Cat 6506's. The PIX's are connected via a failover cable and is stateful. I have an ISDN router on a DMZ on the primary PIX, which has a single Fastethernet port so there is no connection to the secondary PIX. How does this affect my failover. If the primary PIX fails over to the secondary PIX, but the secondary PIX does not have a connection to the single attached ISDN router. How can I do this without having to change my ISDN router to one that has two ethernet ports.

0 Helpful
2 Replies 2

lgijssel
Level 9
Level 9

‎05-19-2005 04:14 AM

You should use a hub or a separate switch to connect both pix DMZ-interfaces and the router.

You could even use a separate Ethernet VLAN from the 6509. Doing this will not really improve fault tolerance while you are adding non fault-tolerant components to the system but it does protect you from PIX failure.

Regards,

Leo

0 Helpful

vsobrun
Level 1
Level 1
In response to lgijssel

‎05-23-2005 04:13 AM

Hi. Thanks, both ways work well, however as you stated there is now still a single point of failure. I may look at upgrading the router at some later stage. Thanks once again.

Vids

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card