get PIX translate Source AND Destination addresses

We have two ISP’s, two PIXes, two web servers and one big problem.

In the sketch I’ve drawn the network.
Both servers run Citrix and IIS that needs to be accessible from outside.
PIXa is for both servers the default gateway.
The PIX and the Linux box do address translation. The PIX rewrites
the destination addresses, the Linux the destination and the source
address.

When ISPa is unavailable we update only the DNS entries for our servers
and people connect to us over ISPb.

The Linux box will be replaced by a PIX.
Is there a way to full NAT a connection so that the requests to
the server seem to be coming from PIXb instead of the actual client?

Tanks in advance,

Chris

+--------------------------------------------------------+
| Internet / |
|. ,'-. |
| '---. _.--' `. |
| `-----+------'' ,`-.----------. |
| ,--------+--. ( ISPb ) |
| ( ISPa ) `------------+' |
| `-------+---' __,,....------------.....__| |
| |,.--'' LAN |`'--..__ |
| _.-''| | `-.|
| ,-' ++-----+ +-+-----+ |
|,' | PIXa ........|..............|... linux | |
| +------+ | | +-------+ |
| | | |
| | | |
| +----------+-+ ++-----------+ |
| | ServerA | | ServerB | |
|`._ | | | | |
| `._ +------------+ +------------+ |
| `-.._ _,.-'|
| `'--...__ ___..--'' |
| `''''------------''''' |
+--------------------------------------------------------+

(An other approach to redundant internet connection is welcome BTW)

 

[snip]

Sorry, I can't help you with the pix. But quick question..you'r using
PAN so I'm assuming you're on Linux. What did you use to draw the ascii
art above?


--

hsb

"Somehow I imagined this experience would be more rewarding" Calvin
*************** USE ROT13 TO SEE MY EMAIL ADDRESS ****************
********************************************************************
Due to the volume of email that I receive, I may not not be able to
reply to emails sent to my account. Please post a followup instead.
********************************************************************

 

Hi,

Check out the static and alias commands.
Documentation here.

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/index.htm

Regards

Rich

 

The ASCII art is made with jave (jave.de). It’s in java so cross platform.
Actually I run PAN under Windows.

 

Thanks. I actually looked around and found "Email Effects" Pretty
decent. ASCEditor4 isn't too bad either once you get used to its
quirks. Didn't know pan run under windows. I'm always looking for a
good newsreader (Gravity's pretty decent)....Thanks for the update
though.


--

hsb

"Somehow I imagined this experience would be more rewarding" Calvin
*************** USE ROT13 TO SEE MY EMAIL ADDRESS ****************
********************************************************************
Due to the volume of email that I receive, I may not not be able to
reply to emails sent to my account. Please post a followup instead.
********************************************************************