Good Afternoon All
We have added a 2nd network (on another floor) to our network and added another ISP and Firewall for redundancy and to be the primary ISP for this new floor. We have several Web Apps that are accessible from outside and would like to add a second A-Record for each that points to this new ISP connection. The web servers will be staying on the original floor but we need to routing traffic that comes through the new ISP over the network to the original DMZ. I got the routing right because I can ping the Web Server from the new firewall but packets are being dropped due to ACL. The ACLs are the same on both firewalls so not sure where the issue is at this point. I am thinking it maybe easier to just route the traffic right from the new firewall to the DMZ switch and bypass the need to route through 2 firewall but something tells me that just is the right way.
We are using 2 ASA 5510s and 2 Dell Powerconnect 6224 as our gateways for each floor.
Any advice or thoughts?