Volker
my setup as follows
Vendor-----CiscoSwith-----TransparentFirewall------VendorRouterCiscoRouter-----
Vendor router exchanges routing routing info with Vendors that are
pluged into the cisco switch (ISL trunking from Router to Switch)
Firewall is filtering all trafic passing including routing proto's
-----Original Message-----
From: king loose [mailto:kingloose@gmail.com]
Sent: Tuesday, April 19, 2005 12:13 PM
To: vtlists@wyae.de; firewalls@securityfocus.com
Subject: Fwd: FW: Transparent firewall + HSRP
Volker
I have tired Transparent mode with VRRP and Nokia with CISCO HSRP and
was unsucessful in getting it to work, due to packets traveling via
both CISCO devices.I am now using routing protocols to my vendors
instead of HSRP.
Good luck.
-----Original Message-----
From: Volker Tanger [mailto:vtlists@wyae.de]
Sent: Friday, April 15, 2005 3:52 AM
To: firewalls@securityfocus.com
Subject: Re: Transparent firewall + HSRP
Good morning!
On Thu, 14 Apr 2005 14:08:16 +0200
Paolo Ottolino <paolo.ottolino@business-e.it> wrote:
does anyone know if the implementation of a mixed, transparent
(bridging) and packet, firewall on a router (like CISCO with IOS) can
cause problems in a redundant architecture, by using, say, the HSRP or
VRRP?
Sorry, you lost me somewhere. Where is which firewall located? You have
Ciscos with IOS - and classic packet filters (routed). Where are the
transparent systems located?
Generally speaking transparent firewalls are treated just like cables
with respect to the routing protocols - except that failure detection
might be a problem without active probing.
--------------------------------------------------------------------------
Test Your IDS
Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
--------------------------------------------------------------------------
