[fw-wiz] VPN Design - is it possible
- From: Julian M D <julianmd@xxxxxxxxx>
- Date: Wed, 21 Dec 2005 10:17:59 -0500
Hi,
I have been given the task to accomplish some kind of failover using
PIX firewall and 2 ISP's connections as follows:
Site A - 2 PIX 506E , 2ISP - 1LAN
Site B, C, D, E, PIX 501 , 1ISP
Site F - PIX 515, 1DMZ, 1ISP
------VPN -------SITE B PIX----------VPN SITE F PIX
SITE A PIX 1 -------VPN--------SITE C PIX----------VPN SITE F PIX
(ISP1) -------VPN--------SITE D PIX----------VPN SITE F PIX
-------VPN--------SITE E PIX----------VPN SITE F PIX
------VPN -------SITE B PIX ----------VPN SITE F PIX
SITE A PIX 2-------VPN--------SITE C PIX----------VPN SITE F PIX
(ISP2) -------VPN--------SITE D PIX----------VPN SITE F PIX
-------VPN--------SITE E PIX----------VPN SITE F PIX
My question is : is it possible to have 2 separate VPN connection to
the same SITE ( looking from B,C,D,E point of view - they would see
the LAN behind SITE A using 2 separate IPSec tunnels)? Has anyone done
or seen anything similar? Do you have a better plan using the given,
options??
Best regards to all, and Happy "Secure" Holidays Everyone!
Julian
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxx
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Follow-Ups:
- RE: [fw-wiz] VPN Design - is it possible
- From: Sanford Reed
- RE: [fw-wiz] VPN Design - is it possible
- From: Paul Melson
- RE: [fw-wiz] VPN Design - is it possible
- Prev by Date: Re: [fw-wiz] OT: Aircards
- Next by Date: SV: [fw-wiz] VPN Design - is it possible
- Previous by thread: [fw-wiz] OT: Aircards
- Next by thread: RE: [fw-wiz] VPN Design - is it possible
- Index(es):
Relevant Pages
|
