4507 R-E General requirement

mansoorms · ‎03-09-2013

Hi,

I have Catalyst 4507 R-E with one supersor engine n 3 other modules.

My question is related to routing of different networks through this switch.

I already have certain routes configured which are going to my ISP thru Juniper firewall.(192.168.0.9)

I also have Cisco ASA 5510 which i want to use as a backup in case the first one goes down.

can anybody help me out in doing so.

The present config for 4507R-E is attached for ur info.

Thanx in advance.

Leo Laohoo · ‎03-09-2013

Your routing is done by your ISP????

You'd want to move the routing capabilities to either your Juniper firewall or your 4500 supervisor card.

Reza Sharifi · ‎03-09-2013

Hi Mansoor,

Since your default route points to the Juniper firewall, you could possibly have a second default route towards the ASA with higher AD. But there is no way to cluster a Juniper SRX with a Cisco ASA and put them in active/active or active/stand-by mode.

HTH

jawad-mukhtar · ‎03-10-2013

HI you can Achieve this

Tracking Interface of Juniper or ISP IP.

You can configure ipsla on that ip

if that ip goes down it should shift all you traffice toward your asa

like

track 1

sla1

icmp echo (IP of Juniper Firewall)

track 2

sla2

icmp echo (ip of ASA)

ip route 0.0.0.0 0.0.0.0 (ip of juniper Firewall) 1 track 1

ip route 0.0.0.0 0.0.0.0 (ip of ASA ) 2 track 1

*** Do Rate Helpful Posts ***

Jawad