From: Stanislav Sinyagin (SSinyagin@xxxxxx)
Date: Thu Jan 06 2000 - 17:38:43 GMT-3
Greg, I believe this is the group for CCIE studies, not for
consultaions for free. Actually all your situation and many others are
more than enough covered in Hallabi's book.
Spend $100 for the book and a week for reading it, or N*$1k to a
consultant.
Stan
Greg Schwimer <schwim@speedchoice.com> wrote:
GS> Hi!
GS> I've got two internet connections to my local network via 2 different IPSs.
GS> I am using a Cisco 7513 to connect to one ISP via a DS-3 connection and a
GS> 12000 series to connect to the other via an OC-12 connection. I've got a
GS> /20 address space and a registered ASN to work with. Two PIX firewalls are
GS> being used in this scenario (NAT on the PIXs for all networks behind them.)
GS> I am thinking of a design similar to this:
GS> DS3 OC-12
GS> ! !
GS> 7513 12000
GS> -------!------------------------!---------- <--- Customer co-lo
cation
GS> network
GS> PIX PIX
GS> ! !
GS> ------------------------------------------ <--- Protected netw
ork
GS> begins
GS> !
GS> 2 x 7206 (HSRP)
GS> !
GS> INSIDE NET
GS> The 7206(s) are the default gateway off the internal network. I am thinkin
g
GS> that the best way to load balance traffic from the inside network is to hav
e
GS> all routers participate in BGP together.
GS> Can anyone make any recommendations as to the best way to accomplish this,
GS> as well as any design considerations that I may have overlooked? Does this
GS> design look feasible? Is there a better way to accomplish this?
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:22:43 GMT-3