Hello
Diagram:
ISP-1 ISP-1
|
|
|
|
CORE-1-------------CORE-2
|
|
|
|
|
|
PE-2 PE-1
10.28.40.41/29 | |
10.28.40.33/29
| |
.42 | |
.34
firewall-2
firewall-1
|
|
|
|
----------------------------------
|
WEB SERVER (10.10.10.1)
I want to route traffic to web server I'm using static routes pointing to a
respective next-hop on a particular router,the devices on customer end
firewall is ASA, customer has asked for the preferred interface from
firewall-1, i have configured that by increasing the local preference of the
route
The link between the distribution switches and the core is MPLS and the
customer is configured in the VRF.
Now the issue is:
customer says that when the firewall-1 fails firewall-2 will be active by
the same inside interface IP of firewall-1, if it so then all the traffic
destined to web server from PE-2 to a next-hop 10.28.40.42 will drop,so in
this situation what techniques we shld apply,The subnet between the 2
firewall are different.
Any link or configuration example which will help me.
Thanks
Blogs and organic groups at http://www.ccie.net
Received on Sat Jan 09 2010 - 18:04:33 ART
This archive was generated by hypermail 2.2.0 : Thu Feb 04 2010 - 20:28:41 ART