Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
585
Views
0
Helpful
1
Replies

creating a dual path from firewall to the lan

network770
Level 1
Level 1

‎02-26-2012 07:42 AM - edited ‎03-07-2019 05:11 AM

HI,

I have a very generic setup right now, it is like this:

asa --> catalyst switch --> wan

i need to put a proxy server between the switch and the firewall and it supports ospf (it's not cisco so no eigrp), i have 2 asa's and 2 switches but only 1 proxy server so am looking to connect the asa to the proxy server and a bypass directly to the catalyst in case the proxy fails.  I want the primary path from the firewall to go through the proxy and if that fails the routing to go directly to the switch.

should i use ospf between the three devices or eigrp between the firewall and switch and ospf between the firewall and  proxy?

how do i control the routes such that the traffic goes through the proxy and over the bypass if the proxy fails?

Labels:
0 Helpful
1 Reply 1

Reza Sharifi
Hall of Fame
Hall of Fame

‎02-26-2012 08:57 AM

Hi,

You can run OSPF, but you have to change the cost on the interface connecting the ASA directly to the switch so it is higher then the interface that connects the firewall to the proxy directly.  If not ASA to switch would be the primary which you don't want.

HTH

0 Helpful
Customers Also Viewed These Support Documents