Is there a way I can route specific traffic to go to one firewall and everything else to go to another firewall? Like this diagram below:
remote site || vpn tunnel || internet || | PIX501 PIX501 \\ / \\ / \\ / Cisco 2600 | | LAN
Thanks.
On 07.06.2006 16:47 psychogenic wrote
Depends on what "specific traffic" is ... if it's just traffic for a specific destination you can do this with normal routing techniques. If it's source based, you'll policy based routing (PBR) to do that. If it's based on other criteria, I can't see how this can be done.
I have a vpn tunnel that's currently setup between the pix501 and a remote site's router. Basically I want any traffic heading to that remote site will go through that pix501 and any other traffic (internet) to go through the other pix501. I'm very new to routing so am unsure if this requires I need to put in 2 gateways in the 2600 router or how would that work?
remote site
||
vpn tunnel
|| internet
|| |
PIX501A PIX501B
\\ /
\\ /
\\ /
Cisco 2600
| |LAN
Remote Site: 10.5.0.0/16
LAN: 10.1.0.0/16
Cisco 2600: 10.1.0.1
PIX501A: 10.1.0.2
PIX501B: 10.1.0.3
On the 2600 you would have:
ip route 0.0.0.0 0.0.0.0 10.1.0.3
ip route 10.5.0.0 255.255.0.0 10.1.0.2
So traffic for the remote Site would go to the PIX501A and all other traffic would go to PIX501B.
This assumes that PIX501A knows that it can pass traffic to Remote Site via its VPN Connection to it.
Scott
Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.