Re: Dual ISP & Dual ASA scenario

I dont think max-path 2 command is required as i will be load sharing the
traffic between the two ISP's.

Cheers,
Nick

On Wed, Sep 14, 2011 at 9:29 AM, Jay McMickle <jay.mcmickle_at_yahoo.com>wrote:

> Since the ASA's are in A/S, you won't be load balancing. But you should
> implement HSRP on the inside ethernet interfaces and put a static route on
> the ASA's to the standby IP.
>
> My point about max-path 2 and the optional per-packet issue still stands
> for BGP load balancing. How do you plan to address?
>
> Regards,
> Jay McMickle- CCNP,CCSP,CCDP
> Sent from my iPhone
> http://mycciepursuit.wordpress.com
>
>
> On Sep 13, 2011, at 10:45 PM, Nick E <ccienovice_at_gmail.com> wrote:
>
> Hi,
>
> Yes, this is the same way I am planning to do for inbound and outbound load
> sharing on Routers.
>
> What about inbound and outbound traffic for ASA?
>
> Cheers,
> Nick
>
> On Wed, Sep 14, 2011 at 9:06 AM, Raghava < <raghava.rao85_at_gmail.com>
> raghava.rao85_at_gmail.com> wrote:
>
>> It can work in this way..
>>
>> Site A -- has one major prefix..
>> Site B --- has one major prefix
>>
>> Like/24..which you wanna give to both ISP frm site A and Site B..
>>
>> What you can do is when you are giving these 2 prefixes from site A, you
>> can prepend..prefix of site B and give it to IsP..
>> In same way..you can give site A prepended prefix from site B, this will
>> make incoming traffic to particular site from ISP end..Use network command
>> to advertise it..this is for future use whenever some thing goes
>> down..inside your core..and the prefixes..of particular site is lost..and
>> for outgoing traffic you can setup some..ways below your switch...from
where
>> the traffic is getting sourced from...
>>
>> Correct me if any views on this
>>
>> HTH
>> Regards,
>> Raghava Rao
>>
>> -Sent from my Vodafone BlackBerry.
>>
>> It matters not how strait the gate,
>> How charged with punishments the scroll.
>> I am the master of my fate:
>> I am the captain of my soul.
>>
>> -- Taken from "Invictus" by William Ernest Henley
>>
>> -----Original Message-----
>> From: Nick E < <ccienovice_at_gmail.com>ccienovice_at_gmail.com>
>> Sender: <nobody_at_groupstudy.com>nobody_at_groupstudy.com
>> Date: Wed, 14 Sep 2011 08:49:36
>> To: Jay McMickle< <jay.mcmickle_at_yahoo.com>jay.mcmickle_at_yahoo.com>
>> Reply-To: Nick E < <ccienovice_at_gmail.com>ccienovice_at_gmail.com>
>> Cc:
<ccielab_at_groupstudy.com>ccielab_at_groupstudy.com<<ccielab_at_groupstudy.com>
>> ccielab_at_groupstudy.com>
>> Subject: Re: Dual ISP & Dual ASA scenario
>>
>> Hi Jay,
>>
>> I will be accepting only default from ISP. To load share the traffic from
>> ISP's i'll be announcing split the prefix in two and announce to both the
>> ISP's with AS prepend.
>>
>> Cheers,
>> Nick
>>
>> On Wed, Sep 14, 2011 at 8:09 AM, Jay McMickle < <jay.mcmickle_at_yahoo.com>
>> jay.mcmickle_at_yahoo.com>wrote:
>>
>> > I meant to also mention the use of max-path 2 (so it will load share)
>> and
>> > per-packet so it will do it equally.
>> >
>> > Regards,
>> > Jay McMickle- CCNP,CCSP,CCDP
>> > Sent from my iPhone
>> > <http://mycciepursuit.wordpress.com>http://mycciepursuit.wordpress.com
>> >
>> >
>> > On Sep 13, 2011, at 3:44 PM, Jay McMickle < <jay.mcmickle_at_yahoo.com>
>> jay.mcmickle_at_yahoo.com> wrote:
>> >
>> > > Are you planning on using HSRP on the ISP routers? How are you
>> planning
>> > to use prepend for the routes- inbound? You mentioned static routes to
>> the
>> > ASA's, but what are you taking from the ISP? What will you use to load
>> > balance the traffic to the ISP? You also need to make sure your ISP
>> routers
>> > are set to not be a transit for BGP.
>> > >
>> > > Regards,
>> > > Jay McMickle- CCNP,CCSP,CCDP
>> > > Sent from my iPhone
>> > > <http://mycciepursuit.wordpress.com>
>> http://mycciepursuit.wordpress.com
>> > >
>> > >
>> > > On Sep 13, 2011, at 3:00 PM, NiKhil < <ccienovice_at_gmail.com>
>> ccienovice_at_gmail.com> wrote:
>> > >
>> > >> Hi All,
>> > >>
>> > >> Scenario:-
>> > >> 2 ISP on 2 different routers.
>> > >> 2 ASA (each ASA is connected to each routers directly)
>> > >>
>> > >> ISP1 ISP2
>> > >> | |
>> > >> Rtr A RtrB
>> > >> | |
>> > >> ASA 1 ASA 2
>> > >> \ /
>> > >> \ /
>> > >> \ /
>> > >> SWITCH 1
>> > >>
>> > >> Requirement:-
>> > >> Load Balancing/Load Sharing between both the ISP's.
>> > >> Active/Standby between both the ASA
>> > >>
>> > >> Solution:-
>> > >> AS path prepending to be used for load sharing by running BGP.
>> > >> Configuring 2 default routes one for ISP1 and another as back up for
>> > ISP2 on
>> > >> ASA.
>> > >> PBR configuration on RtrA to forward the traffic on RtrB.
>> > >> Stateful Failover on ASA
>> > >>
>> > >> Kindly do let me know if this is good solution. Also, if there are
>> any
>> > >> challenges to implement this solution. If anyone has another better
>> > solution
>> > >> please suggest.
>> > >>
>> > >> Cheers,
>> > >> Nick
>> > >>
>> > >>
>> > >> Blogs and organic groups at <http://www.ccie.net>http://www.ccie.net
>> > >>
>> > >>
>> _______________________________________________________________________
>> > >> Subscription information may be found at:
>> > >> <http://www.groupstudy.com/list/CCIELab.html>
>> http://www.groupstudy.com/list/CCIELab.html
>> > >
>> > >
>> > > Blogs and organic groups at <http://www.ccie.net>http://www.ccie.net
>> > >
>> > >
>> _______________________________________________________________________
>> > > Subscription information may be found at:
>> > > <http://www.groupstudy.com/list/CCIELab.html>
>> http://www.groupstudy.com/list/CCIELab.html
>>
>>
>> Blogs and organic groups at <http://www.ccie.net>http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> <http://www.groupstudy.com/list/CCIELab.html>
>> http://www.groupstudy.com/list/CCIELab.html

Blogs and organic groups at http://www.ccie.net
Received on Wed Sep 14 2011 - 09:47:45 ART