|
Posted by Scott Perry on September 22, 2008, 12:57 pm
If you were Registered and logged in, you could reply and use other advanced thread options
There is not really a way for one Cisco PIX or ASA firewall to perform this
action. This is in relation to a previous post about having different
inside networks route to two different Internet connections.
The problem is that a Cisco firewall, within a single context of a firewall,
does not have the capability to use route-maps and policy based routing like
a Cisco router. A Cisco router could declare that any traffic matching
certian conditions, like an access-list specifying the internal source
network, would be routed under different conditions, like using a different
outgoing interface to a different Internet service provider. This would
provide the solution for what you have described.
You are going to be better off purchasing a second firewall and routing the
second network through the second Internet service provider. You could also
declare route maps in a router which is in-line before the firewalls.
-----
Scott Perry
Indianapolis, IN
-----
> Hello,
>
> I have a pix 515E. It's possible to have two internet links (A and B)
> (two ISPs differents) and to have two internal networks
> (C and D), so that network C leaves by A and D leaves by B.
>
> that command i need???
| 
Yahoo! 
Google 
Windows Live 
del.icio.us 
digg 
Netscape 
XML site map