One other option you might want to consider. This would require NATing which
I'm guessing you are doing on the ASAs, if not then this won't work. Here is
the solution:
- Add another switch between the ASAs and RtrA and RtrB. Setup NATing on
RtrA and RtrB to the local IP of ISP 1 and ISP 2.
- Don't NAT anything on the ASAs.
- Configure GLBP on RtrA and RtrB, and share the load equally.
The way this would work is a certain traffic would go to RtrA get NATed to
ISP1 addressing and always come back through that interface, while other
traffic be forwarded to RtrB and get NATed to ISP2 addressing and always use
that to return. You can spread the load pretty evenly and maintain the same
path for all established connections. If one connection goes down GLBP won't
direct traffic to that router anymore.
Hope this helps.
Tom K
On Tue, Sep 13, 2011 at 2:00 PM, NiKhil <ccienovice_at_gmail.com> wrote:
> Hi All,
>
> Scenario:-
> 2 ISP on 2 different routers.
> 2 ASA (each ASA is connected to each routers directly)
>
> ISP1 ISP2
> | |
> Rtr A RtrB
> | |
> ASA 1 ASA 2
> \ /
> \ /
> \ /
> SWITCH 1
>
> Requirement:-
> Load Balancing/Load Sharing between both the ISP's.
> Active/Standby between both the ASA
>
> Solution:-
> AS path prepending to be used for load sharing by running BGP.
> Configuring 2 default routes one for ISP1 and another as back up for ISP2
> on
> ASA.
> PBR configuration on RtrA to forward the traffic on RtrB.
> Stateful Failover on ASA
>
> Kindly do let me know if this is good solution. Also, if there are any
> challenges to implement this solution. If anyone has another better
> solution
> please suggest.
>
> Cheers,
> Nick
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Wed Sep 14 2011 - 13:00:05 ART
This archive was generated by hypermail 2.2.0 : Sat Oct 01 2011 - 07:26:25 ART