From: Greg Schwimer (schwim@xxxxxxxxxxxxxxx)
Date: Thu Jan 06 2000 - 13:42:11 GMT-3
Hi!
I've got two internet connections to my local network via 2 different IPSs.
I am using a Cisco 7513 to connect to one ISP via a DS-3 connection and a
12000 series to connect to the other via an OC-12 connection. I've got a
/20 address space and a registered ASN to work with. Two PIX firewalls are
being used in this scenario (NAT on the PIXs for all networks behind them.)
I am thinking of a design similar to this:
DS3 OC-12
! !
7513 12000
-------!------------------------!---------- <--- Customer co-locati
on
network
PIX PIX
! !
------------------------------------------ <--- Protected network
begins
!
2 x 7206 (HSRP)
!
INSIDE NET
The 7206(s) are the default gateway off the internal network. I am thinking
that the best way to load balance traffic from the inside network is to have
all routers participate in BGP together.
Can anyone make any recommendations as to the best way to accomplish this,
as well as any design considerations that I may have overlooked? Does this
design look feasible? Is there a better way to accomplish this?
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:22:43 GMT-3