PIX in Failover mode
Posted on 2006-06-08
I have a PIX with 6 FE ports and VAC. I have bought a FO unit direct from Cisco. I plan on using a Cisco 3560G layer 3 switch for VLANing as well. I have a read a lot about setting this up, but still do not understand some of this stuff.
1) Why would it not be wise to connect all of the FE ports from both PIXs to the same layer 3 switch if you are VLANing? Is it a security concern?
2) Do I have to configure a unique IP for each interface on both PIXs? I Would the below IP scheme work right?
3) And If I assign these interfaces to these VLANs, how do I get them to communicate with a router in the same rack that is managed by a third-party?
***** PUBLIC IPs ARE FAKE*********
E0 188.8.131.52 255.255.255.224 (VLAN 55)
E1 10.253.3.249 255.255.255.248 (VLAN 248)
E2 192.168.2.1 255.255.255.0 (VLAN 11)
E3 10.253.3.241 255.255.255.248 (VLAN 240)
E0 184.108.40.206 255.255.255.224 (VLAN 55)
E1 10.253.3.250 255.255.255.248 (VLAN 248)
E2 192.168.2.2 255.255.255.0 (VLAN 11)
E3 10.253.3.242 255.255.255.248 (VLAN 240)
????????? OR AM I TOTALLY OFFBASE??????????