Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have two routes into a system, one is a T1 and the other a 10Mb connection setup on two routers doing HSRP. Both are being advertised via BGP into different remote AS in different carrier networks.My problem is that incoming traffic doesn't always...
I have a PIX 515E setup with multiple interfaces. For right now to make things simple lets just look at the outside, inside, and DMZ.On the inside interface I have a router connecting the inside network directly to another network. The DMZ interfac...
I recently started getting this error message -%PIX-3-210005: LU allocate connection failedfrom my FO license PIX 515E. All I could find form Cisco was to check the memory, and it is over 50% free on both devices.What else could cause these errors?I...
Is there anyway to shutdown the unused switchports on the 501? I have one uplinked to a larger switch, and would prefer to have the unused ports shutdown as an extra security measure.Thanks
I am planning on reworking my home network to include a PIX 501 as the firewall device. My reasons are basically to get some firsthand experience, and of course better protect my network. The only part that I am not really certain about is which li...
Thanks, that is pretty much what I was thinking as far as the prepend statement goes. I am planning to get it in on Friday, and will let you know how it goes.All other BGP statements are already configured, filtering, peering, etc. This was two T1'...
No, I do want to force all traffic down the 10Mb link when it is up, and only use the T1 should the 10Mb link fail.Really we are kind of mid change. Ultimitely the goal is to have two 10Mb connections, and let BGP do path selection. This will do a ...
So if I create a route map on the T1 line and prepend the local AS to it a couple of times it should make that path longer, and less desirable, correct?Then should the other connection fail completely even though the path is longer it would now be th...
There is a static route to all of the internal networks which are not directly connected. Static PAT is being used on all translations.No NAT permit of no NAT statements for networks going into the DMZ.Thanks
