Aren't we just talking about running a routing protocol here, as Anders suggested? Yes, you'll need to configure static routing (or use an internal routing protocol) to ensure that all devices on each subnet (including the firewalls) know how to get to the other subnet. In order to automate the failover, you'll need to use a routing protocol like EIGRP, BGP, or OSPF on your external router to detect the "down" connection and instruct your internal routers, A-1 or B-1, to use the T1 as default rather than the local firewall. Your internal clients will therefore need to use the internal routers as their default gateway (A-1 at siteA, B-1 at siteB). You may have best success passing BGP through your firewall.
HTH - please post with further questions.
Dan Hitchcock
CCNP, CCSE, MCSE
Security Analyst
Breakwater Security Associates, Inc.
"Safe Harbor for E-Business"
dhitchcock (at) breakwatersecurity (dot) com
http://www.breakwatersecurity.com
206-770-0700 work
The information contained in this email message may be privileged, confidential and protected from disclosure. If you are not the intended recipient, any dissemination, distribution or copying is strictly prohibited. If you think you have received this email message in error, please email the sender at [EMAIL PROTECTED]
