[c-nsp] PIX w/ 2 ISPs

Tantsura, Jeff jtantsura at ugceurope.com
Fri Jun 24 10:38:11 EDT 2005 

Be sure that DNS doesn't load balance between different IP's, not the case
for redhat thought.


--
Jeff Tantsura  CCIE# 11416
Senior IP Network Engineer


-----Original Message-----
From: info at beprojects.com [mailto:info at beprojects.com] 
Sent: 24 June 2005 15:46
To: Big Wave Dave; cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] PIX w/ 2 ISPs

Yes, but you'd have to specify all of the destination IPs that you want 
to go out the DSL line since the PIX can only have one default route. 
So if you wanted www.redhat.com to go out the 3rd interface, you could 
have something like:

route outside 0.0.0.0 0.0.0.0 (whatever the T1 IP is)
route 3rdint 209.132.177.0 255.255.255.0  (IP of dsl)

Big Wave Dave wrote:
> All,
> 
> I currently have a T1 with a PIX behind it.  I'm having issues with
> developers in our company constantly download isos for various
> distributions.  The downloads are a legitimate business need, and
> aren't duplicates (we post the downloads to an internal repository).
> 
> However, these downloads tend to saturate the T1.  It has been
> suggested that we buy a cheap DSL connection... have a computer
> connected to it... and download to it.  I don't like the idea of
> ANOTHER thing to firewall, manage, etc.  Even getting another T1 and
> bonding it with my current connection would only give me half of what
> some DSL companies are offering these days... and I don't need upload
> for this stuff.
> 
> SO... My idea... Could I simply use another interface on my PIX for
> the the DSL connection, and make specific routes on my PIX to send
> downloads (i.e. downloads.redhat.com) across the DSL connection?  I
> would prefer to avoid putting an additional router between the ISP
> connections and the PIX.
> 
> Thanks,
> Dave
> 
> ----------------------------------------------------------
> Are Your Friends Lemmings? 
> -- http://www.lemmingshirts.com
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> 
> .
> 
_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

More information about the cisco-nsp mailing list