Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 763
  • Last Modified:

Add Ethernet adapter to Cisco PIX 515E

Hi All,

My company's network is behind a PIX 515E.  We are going to be adding an additional ISP for redundancy since we have mission critical app's running on our network.  

We have two subnets.   I would like one subnet to continue using the current ISP, and force the other subnet to use the new ISP.

So, I'm going to purchase an additional NIC for the PIX (Anyone know what make/model I should use?)

And then force the 2nd subnet to use the new interface (which will be the new ISP)

Does this sound reasonable? What make/model NIC should I install? Will it be PnP?
0
polaris101
Asked:
polaris101
  • 5
  • 4
1 Solution
 
Istvan KalmarHead of IT Security Division Commented:
Hi,

you need:
PIX-1GE-66= or PIX-4FE-66

http://www.cablesandkits.com/cisco-pix4fe-10100-port-fast-ethernet-card-p-1401.html

Don't forget the static nat statements not working with backup lines!

Best regards,
Istvan
0
 
polaris101Author Commented:
Do you know if the new card will be detected automatically?

What do you mean the static nat statements not working?

Thanks
Scott
0
 
Istvan KalmarHead of IT Security Division Commented:
yep... it is automatically recognized by the PIX!

Because the primary address configured for PIX!

Best regards,
Istvan
0
Choose an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

 
Istvan KalmarHead of IT Security Division Commented:
it is PnP, but you need to switch of the device!
0
 
polaris101Author Commented:
I was going to do something like this:

interface2 auto
nameif ethernet2 outside2 security0
ip address outside 2 X.X.X.X
alias(inside) 10.242.55.253 X.X.X.X 255.255.255.255

interface2 = new ethernet card
x.x.x.x = IP assigned by new ISP
10.242.55.253 = IP of where 2nd subnet will be coming from that I want to force to the new ISP.

How does that look?
0
 
Istvan KalmarHead of IT Security Division Commented:
0
 
polaris101Author Commented:
At this time I don't want a failover configuration.  Any advice regarding my previous post?
0
 
Istvan KalmarHead of IT Security Division Commented:
Policy routing not supported by PIX, so you only able to us failover configuration....
0
 
polaris101Author Commented:
Hmm.. So what I mentioned above is not possible then?  An alias wound't work?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Get Certified for a Job in Cybersecurity

Want an exciting career in an emerging field? Earn your MS in Cybersecurity and get certified in ethical hacking or computer forensic investigation. WGU’s MSCSIA degree program was designed to meet the most recent U.S. Department of Homeland Security (DHS) and NSA guidelines.  

  • 5
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now