Re: Dual ISP & Dual ASA scenario

It can work in this way..

Site A -- has one major prefix..
Site B --- has one major prefix

Like/24..which you wanna give to both ISP frm site A and Site B..

What you can do is when you are giving these 2 prefixes from site A, you can prepend..prefix of site B and give it to IsP..
In same way..you can give site A prepended prefix from site B, this will make incoming traffic to particular site from ISP end..Use network command to advertise it..this is for future use whenever some thing goes down..inside your core..and the prefixes..of particular site is lost..and for outgoing traffic you can setup some..ways below your switch...from where the traffic is getting sourced from...

Correct me if any views on this

HTH
Regards,
Raghava Rao

-Sent from my Vodafone BlackBerry.

It matters not how strait the gate,
How charged with punishments the scroll.
I am the master of my fate:
I am the captain of my soul.

-- Taken from "Invictus" by William Ernest Henley

-----Original Message-----
From: Nick E <ccienovice_at_gmail.com>
Sender: nobody_at_groupstudy.com
Date: Wed, 14 Sep 2011 08:49:36
To: Jay McMickle<jay.mcmickle_at_yahoo.com>
Reply-To: Nick E <ccienovice_at_gmail.com>
Cc: ccielab_at_groupstudy.com<ccielab_at_groupstudy.com>
Subject: Re: Dual ISP & Dual ASA scenario

Hi Jay,

I will be accepting only default from ISP. To load share the traffic from
ISP's i'll be announcing split the prefix in two and announce to both the
ISP's with AS prepend.

Cheers,
Nick

On Wed, Sep 14, 2011 at 8:09 AM, Jay McMickle <jay.mcmickle_at_yahoo.com>wrote:

> I meant to also mention the use of max-path 2 (so it will load share) and
> per-packet so it will do it equally.
>
> Regards,
> Jay McMickle- CCNP,CCSP,CCDP
> Sent from my iPhone
> http://mycciepursuit.wordpress.com
>
>
> On Sep 13, 2011, at 3:44 PM, Jay McMickle <jay.mcmickle_at_yahoo.com> wrote:
>
> > Are you planning on using HSRP on the ISP routers? How are you planning
> to use prepend for the routes- inbound? You mentioned static routes to the
> ASA's, but what are you taking from the ISP? What will you use to load
> balance the traffic to the ISP? You also need to make sure your ISP routers
> are set to not be a transit for BGP.
> >
> > Regards,
> > Jay McMickle- CCNP,CCSP,CCDP
> > Sent from my iPhone
> > http://mycciepursuit.wordpress.com
> >
> >
> > On Sep 13, 2011, at 3:00 PM, NiKhil <ccienovice_at_gmail.com> wrote:
> >
> >> Hi All,
> >>
> >> Scenario:-
> >> 2 ISP on 2 different routers.
> >> 2 ASA (each ASA is connected to each routers directly)
> >>
> >> ISP1 ISP2
> >> | |
> >> Rtr A RtrB
> >> | |
> >> ASA 1 ASA 2
> >> \ /
> >> \ /
> >> \ /
> >> SWITCH 1
> >>
> >> Requirement:-
> >> Load Balancing/Load Sharing between both the ISP's.
> >> Active/Standby between both the ASA
> >>
> >> Solution:-
> >> AS path prepending to be used for load sharing by running BGP.
> >> Configuring 2 default routes one for ISP1 and another as back up for
> ISP2 on
> >> ASA.
> >> PBR configuration on RtrA to forward the traffic on RtrB.
> >> Stateful Failover on ASA
> >>
> >> Kindly do let me know if this is good solution. Also, if there are any
> >> challenges to implement this solution. If anyone has another better
> solution
> >> please suggest.
> >>
> >> Cheers,
> >> Nick
> >>
> >>
> >> Blogs and organic groups at http://www.ccie.net
> >>
> >> _______________________________________________________________________
> >> Subscription information may be found at:
> >> http://www.groupstudy.com/list/CCIELab.html
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html

Blogs and organic groups at http://www.ccie.net
Received on Wed Sep 14 2011 - 03:36:47 ART