Solved: Re: Cisco PIX Crude Traffic Load Balance

Nicholas Beard · ‎01-11-2011

Hi all,

Im looking at performing a type of crude load balancing from a single Cisco PIX. I have a scenario whereby I have two ADSL routers directly connected to two seperate external interfaces on the Cisco PIX. I am aware that the device does not support any form of Policy Based Routing therefore i plan to implement the following -

route outside 0.0.0.0 0.0.0.0 Router 1 metric 1

route outside 0.0.0.0 0.0.0.0 Router 2 metric 2

nat (inside) 1 0 0

global (outside 1) 1 interface

global (outside 2) 1 interface

static (outside 1,inside) tcp 0.0.0.0 www 0.0.0.0 www netmask 0.0.0.0

static (outside 2,inside) tcp 0.0.0.0 smtp 0.0.0.0 smtp netmask 0.0.0.0

I believe this should force the Cisco PIX to perform a destination NAT based on the services specified and therefore cause it to ignore the metrics of the static routes.

Am i correct in the assumption that the NAT will decide the necessary routed interface, based on the rule specified above?

Thanks all

andrew.prince · ‎01-11-2011

You are not performing desintation NAT - by specificy the TCP port you are perfoming PAT.

and all the config is doing is forcing the WWW traffic out of 1 interface and SMTP out the other.

HTH>

View solution in original post

andrew.prince · ‎01-11-2011

You are not performing desintation NAT - by specificy the TCP port you are perfoming PAT.

and all the config is doing is forcing the WWW traffic out of 1 interface and SMTP out the other.

HTH>