From: Curtis Phillips (phillipscurtis@xxxxxxxxxxxx)
Date: Fri Jan 07 2000 - 20:30:41 GMT-3
Greg,
It appears to me that your internal hosts will load balance with a MHSRP
configuration. As far as I know (at least from the hosts's perspective) you
will load balance by dividing your hosts default gateways between the two
virtual ips with a fail-over to the remaining HSRP router in the event of
failure. Those 7206's would then feed the PIX interfaces and go out seperate
channels..IE the 7513 and the 12000.
Curtis
"Greg Schwimer" <schwim@speedchoice.com> wrote:
Hi!
I've got two internet connections to my local network via 2 different IPSs.
I am using a Cisco 7513 to connect to one ISP via a DS-3 connection and a
12000 series to connect to the other via an OC-12 connection. I've got a
/20 address space and a registered ASN to work with. Two PIX firewalls are
being used in this scenario (NAT on the PIXs for all networks behind them.)
I am thinking of a design similar to this:
DS3 OC-12
! !
7513 12000
-------!------------------------!---------- <--- Customer co-locati
on
network
PIX PIX
! !
------------------------------------------ <--- Protected network
begins
!
2 x 7206 (HSRP)
!
INSIDE NET
The 7206(s) are the default gateway off the internal network. I am thinking
that the best way to load balance traffic from the inside network is to have
all routers participate in BGP together.
Can anyone make any recommendations as to the best way to accomplish this,
as well as any design considerations that I may have overlooked? Does this
design look feasible? Is there a better way to accomplish this?
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:22:43 GMT-3