Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

dual dsl pix

Status
Not open for further replies.
digiraven

digiraven

MIS
Sep 13, 2003
17
0
0
US
I've created a dsl vpn pix to pix connection with no problem. I like it so much I will probably implement it at my larger branch. The question I have since I will save so much more money from using a t1 I was curious about getting two dsl connections at one branch. Is their a way or a product from Cisco that I can use that will take advantage of two dsl's? redundancy and load balancing

thanks
 
Sort by date Sort by votes
With a router connected to two WAN links and the PIX outside interface, will the router be responsible for NAT? If not, how is the PIX outside interface configured in this situation?
 
Upvote 0 Downvote
-------------------------------------
dsl <-|
|->router <-> pix <-> inside
dsl <-|
-------------------------------------

Let the router and the PIX sit on the same network/subnet

Then let the router do only the routing and no NAT

 
Upvote 0 Downvote
Thanks, that part is somewhat obvious, but what about the configuration specifics...

Assuming 2 different wan IP blocks, what IP address is the pix outside interface given? Or, is it configured as some sort of internal/transitional network along with the router's 3rd interface?
 
Upvote 0 Downvote
you could do like a 1720 with dual DSL WIC's

so:
ISP1 ISP2
|w2 |w1
[1720]
|e1
-LAN-
 
Upvote 0 Downvote
Give the PIX an address from either of the two WAN blocks but make sure you translate (NAT, PAT or static) addresses on the outside from both WAN blocks. And let the router be aware of the two WAN blocks and the appropriate routing.

For example:
WAN block 1: 10.10.1.0/29
WAN block 2: 10.10.2.0/29

PIX Configuration:
PIX oustide interface address: 10.10.1.1/29
PIX Translations: xxx.xxx.xxx.xxx <=> 10.10.10.1.3/29
zzz.zzz.zzz.zzz <=> 10.10.10.2.5/29
yyy.yyy.yyy.yyy-yyy.yyy. <=> 10.10.2.4/29

Router Cofiguration:
Ethernet address (PIX LAN): 10.10.1.2/29 primary
10.10.2.2/29 secondary
Routing:
Only define ISP-to0-you routing which may vary if you are using either one ISP or two.

I has worked for me with two WAN blocks from the same ISP.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

xwray
  • Locked
  • Question
PIX 501 DHCP Server function
Replies
0
Views
35
xwray
xwray
brownmab53
  • Locked
  • Question
PIX 525 ASA not allowing DHCP addresses to pass through to router
Replies
0
Views
42
brownmab53
brownmab53
quazimotto
  • Locked
  • Question
Correct Upgrade Path for PIX
Replies
7
Views
92
quazimotto
quazimotto
quazimotto
  • Locked
  • Question
Ping thru PIX to subnet inside??!!
Replies
0
Views
29
quazimotto
quazimotto
hall5942
  • Locked
  • Question
Site to Site VPN with Cisco 881 and PIX
Replies
0
Views
31
hall5942
hall5942

Part and Inventory Search

Sponsor

Back
Top