Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
226
Views
0
Helpful
1
Replies

default route problem ???

mark.edwards
Level 1
Level 1

‎10-12-2002 06:38 AM - edited ‎03-09-2019 12:38 AM

We currently have a default route pointing to a pair of PIX firewalls running in failover mode. We have added another pair at a DR site and want to add a second default route to the second firewall pair. However when the first firewall pair fail, the deafult route still points to the interface of the primary pair of FW's that is now failed. I need to make this dynamic when there is a failure. The only way I can thik of configuring this is to create a default route on one of our outside internet facing routers and tunnel a IGP through the firewalls allowing only the default route through. Is there a better way to configure this ??

Labels:
0 Helpful
1 Reply 1

steve.barlow
Level 7
Level 7

‎10-12-2002 08:07 AM

How are the 2 sites connected - via the external outside router you mentioned and/or another link? Depending on that connection, you can have each pair of pix's advertise a default route via rip. Then you can redistribute those routes into your IGP and set a metric so that the active pixs default is selected over the backup pix's (at the DR). Or if you are running rip, use an offset list to prefer one pair of pixs over the other.

Steve

0 Helpful
Customers Also Viewed These Support Documents