From: Sam Munzani (sam@munzani.com)
Date: Thu May 27 2004 - 13:20:40 GMT-3
Hi,
A friend of mine stumped me on using DSL backup for their Internet T1 line.
Below is how they are setup.
---------Internet----------
| |
ISP1(T1) ISP2(DSL)
| |
PIX-515 PIX-506
| |
----- Router(R1) -------
|
Switch
All users are connected to internal switch. ISP devices are part of their
managed service so customer does not have access to it. CPE starts at PIX
firewalls. They way it's done now is everybody's GW is router's ethernet
interface. Router has default route pointing to PIX-515. In case of T1
failure, manually change that default route to point to PIX-506. Both
firewalls has necessary NATs, rules defined properly so they start using DSL
for internet. They don't have deep pocket for BGP so inbound mail traffic will
not work until T1 is restored and they are OK with it.
Is there any way to make the failover automatic? Since there is no dynamic
routing between ISP routers and R1, how would R1 know about line failure?
Any ideas will be greatly appreciated.
Sam Munzani
CCIE # 6479(R&S, Security)
This archive was generated by hypermail 2.1.4 : Wed Jun 02 2004 - 11:12:18 GMT-3