Wal, best of luck finding a solution. I'm in a similiar situation
(only differing in Firewall flavor) and have been working on a
solution for months now as we would like to load balance the cluster.
>I have a scenario not sure how to go about it to solve it.
>I have a netra solaris 2.6 machine running checkpoint fw. This machine
>has several interfaces. Two of the interfaces are uplinks to providers
>(say l1 and l2).
>Now, i would like to utilize link l2 so that only/mostly outbound
>traffic passes over it. So for this, i believe that web requests
>to our web servers would be the easiest.
>So ....no probs in changing the dns etc..
>So now, a web request comes in through l2-> web_server howeverr returns
>through **** l1 **** . This is because the default route is set to l1.
>I cant add another default route as it will use both routes for in and
>Is it possible to ensure that all traffic coming in through one
>interface goes back out the same interface?
>Or is it possible to send certain types of traffic (such as web -- port
>80) through a specific interface?
>As a Side-note, what are the conditions , or is it possible to set the
>default route on the web_server to be one hop away from l2 (on the
>provider side) ? Ive tried this, even after i tried publishing the arp
>etc.. but didnt work for me
>Is there some other way i can solve it?
>Any suggestions would be appreciated.