RE: Two default gateway (IP Route ..)

From: Tony Schaffran (groupstudy@cconlinelabs.com)
Date: Tue Nov 13 2007 - 23:05:17 ART

• Next message: Bob Sinclair: "Re: mls qos trusts"
• Previous message: Wilson, Ryan # Atlanta: "mls qos trusts"
• Maybe in reply to: Muhammad Saleem: "Two default gateway (IP Route ..)"
• Next in thread: Muhammad Saleem: "RE: Two default gateway (IP Route ..)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

For what you are trying to accomplish, I am affraid it is a little more
complicated than it seems.

Without BGP, to get inbound traffic to your web and mail servers, you will
need something like a Fatpipe device or some kind of dynamic DNS
implementation.

Tony Schaffran
Network Analyst
CCIE #11071
CCNP, CCNA, CCDA,
NNCDS, NNCSS, CNE, MCSE
 
www.cconlinelabs.com
Your #1 choice for online Cisco rack rentals.
 

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Muhammad Saleem
Sent: Tuesday, November 13, 2007 7:23 AM
To: ccielab@groupstudy.com
Subject: Two default gateway (IP Route ..)

Hi Experts,

This is a little odd question but related to one of the routing issues.

I have one L3 switch, one Server VLAN, Two ISPs, one is through VSAT which
is primary link and second one is DSL link.

VSAT is further connected to outside interface of CISCO Pix Firewall
protecting Web and Email server.

DSAL is further connected to Microsoft ISA firewall outside interface, ISA
FW will be use to publish Web and Email servers

I am going to provide availability of Web and Email servers in case of VSAT
link is down.

In CISCO Cat 3750 switch I have defined VLAN for Web and Email servers and
in servers Default Gateway IP I defined the IP address of VLAN IP address
(SVI IP address)

in CISCO Cat 3750

ip route 0.0.0.0 0.0.0.0 192.168.43.2

(192.168.43.2 is the Internal IP of CISCO Pix firewall)

With this switch configuration VSAT connection is working fine and I can
access web and email server from outside and inside.

I want to use DSL link for inbound connection only if main VSAT link is
down, people should be able to access web and Email server from Internet.

Now, I am going to add DSL connection in my network so, should I just add
one more

IP ROUTE entry in my L3 switch like

ip route 0.0.0.0 0.0.0.0 192.168.43.10 ?

(192.168.43.10 is the inside IP of Microsoft ISA firewall)

Is this enough to get web and email service availability or what should I do
more??

How can I define two Gateways with different distance, so the L3 switch
recognize that main VSAT link (CISCO Pix) is down so use the DSL link(ISA
Server).

I will appreciate all the responses.

• Next message: Bob Sinclair: "Re: mls qos trusts"
• Previous message: Wilson, Ryan # Atlanta: "mls qos trusts"
• Maybe in reply to: Muhammad Saleem: "Two default gateway (IP Route ..)"
• Next in thread: Muhammad Saleem: "RE: Two default gateway (IP Route ..)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Dec 01 2007 - 06:37:29 ART