From: Kenneth Wygand (KWygand@customonline.com)
Date: Thu May 27 2004 - 14:25:18 GMT-3
I wonder if your friend just received the latest issue of Packet
Magazine... use local policy routing through SAA agents.
Article: Static and Policy Routing Enhancements
http://www.cisco.com/en/US/about/ac123/ac114/ac173/Q2-04/department_tech
tips.html
Kenneth E. Wygand
Systems Engineer, Project Services
CISSP #37102, CCNP, CCDP, ACSP, Cisco IPT Design Specialist, MCP, CNA,
Network+, A+
Custom Computer Specialists, Inc.
"The only unattainable goal is the one not attempted."
-Anonymous
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Sam Munzani
Sent: Thursday, May 27, 2004 12:21 PM
To: ccielab@groupstudy.com
Subject: Network design case study
Hi,
A friend of mine stumped me on using DSL backup for their Internet T1
line.
Below is how they are setup.
---------Internet----------
| |
ISP1(T1) ISP2(DSL)
| |
PIX-515 PIX-506
| |
----- Router(R1) -------
|
Switch
All users are connected to internal switch. ISP devices are part of
their
managed service so customer does not have access to it. CPE starts at
PIX
firewalls. They way it's done now is everybody's GW is router's ethernet
interface. Router has default route pointing to PIX-515. In case of T1
failure, manually change that default route to point to PIX-506. Both
firewalls has necessary NATs, rules defined properly so they start using
DSL
for internet. They don't have deep pocket for BGP so inbound mail
traffic will
not work until T1 is restored and they are OK with it.
Is there any way to make the failover automatic? Since there is no
dynamic
routing between ISP routers and R1, how would R1 know about line
failure?
Any ideas will be greatly appreciated.
Sam Munzani
CCIE # 6479(R&S, Security)
This archive was generated by hypermail 2.1.4 : Wed Jun 02 2004 - 11:12:18 GMT-3