Sorry if this is a tangent, but:
Could someone not use something like a Local Director or RND Networks
Radware device? This is a hardware load balancing/fault tolerance solution
that would show one mac/ip while shuffling traffic for multiple addresses.
This eliminates the need for 3rd party software (like Vinca.. ichhhh...) and
you get to use both boxes at the same time.
(right now I would probably do the RADWare ISD or something, but Cisco
claims their next release of local director will smoke the competition. We
shall see...)
-----Original Message-----
I've got your point. Two ways come to my mind:
1. Two servers running in parallel. There you have two IP addresses/MAC
addresses known by PIX. But for this approach the highav needs load
balancing through dynamic routing (ospf would be an excellent choince).
2. Two server using any proprietary hot standby, which provides a pseudo (or
virtual) MAC address to the PIX, so that take over from one server to the
other is not perceived by the PIX.
Sure the alternative is to drop PIX.:-)
Regards
Norbert Schaar
Firewall Team - Network Security Services
Dresdner Global IT Services - DreGIS
Dresdner Bank AG
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
