I don't think that would work mvalentine. Because you are redistributing the static route at HQ back to the remote site it will always be in the routing table at the remote site. The HQ router won't monitor if z.x.c.v went down or not and if it did it wouldn't take it out of the routing updates because it is a static route. I think the only way this could be done is to ensure a dynamic routing protocol is used with the ISP, along with a ip default-network so you get updates when they go down and then the remote site can then use the ip route command with a higher metric at that point. I guess it really all comes done to what routing protocol you are using and all the different ways there is to implement a solution. Let me know what you think, mvalentine.

Jason Smith

www.smif101.com

Should the HQ internet interface goes down, this static route will be removed from the routing table and hence not redistributed. There is no 'permanent' keyword being used with this static route.

However, if the HQ internet interface remains up and that ISP has some other connectivity issues, like routing problems, then both sites will experience Internet down.

Thanks.

Along these same lines, here's a recent article in Packet...

http://www.cisco.com/en/US/about/ac123/ac114/ac173/Q2-04/department_techtips.html

I dont know how to add route for port 80 traffic.

In order for you to detect downed interface on your HQ Internet router you will require some dynamic routing through the firewall. If dynamic routing is not traversig your firewall you will never be able to detect interface down.

I can only think of BGP as it should be quite easy to let BGP through your checkpoint. BGP need be run only on inside and outside router. You can redistribute the default to EIGRP.

HTH.

You can also use EIGRP through the firewall to learn the default--you have to punch a hole in the firewall for EIGRP, and you'll also have to set up static EIGRP neighbors, but I've seen it working in the field, so....

:-)

Russ.W