• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 455
  • Last Modified:

Network / internet redundancy

Currently we have a bonded T1 for our main internet access in our building.  We have many stores that connect through us to have access to the internet.  We are looking at our main failure points at we are trying to create a failover plan but there seems to be many options, just wondering if you guys can help!  

Main failure points would be the Bell T1 router ---> Nortel contivity 1100 firewall -----> Cisco 3560g switch.  Our thoughts were to put something like a FATPIPE to handle and load balance our T1 plus another form of internet access. as for the firewall, is there something that we could have possibly 2 that would failover to each other? and as for the cisco switch, we thought just put another inexpensive 48 port switch we can manually switch to if the switch failed.  

Ideally we would want this as automatic when there is a failure as possible, but we are trying to keep costs down.

Any idea's would be great!

Thanks,

Chad
0
lgropper
Asked:
lgropper
  • 3
  • 2
1 Solution
 
rburns50Commented:
You are looking for a cadillac solution (full redundancy), on a '72 Pinto budget. The best scenario (in my mind) is to use two Contivity switches, and two LAN switches inside, assuming that you have a switch or hub connecting the Bell T1 router to your Contivity. I'm not sure if Contivity supports VRRP (hot failover on interfaces) or not..if so, great. If not, have your PC's inside the building use two default gateway addresses (one for each Contivity). On the outside, connect both Contivity switches to the Bell T1 router and another provider's CPE, and give each Contivity two default gateways...one to the Bell router, and one to the new provider's CPE.

Way too many optons and scenarios to discuss here, but your idea of a cold spare solution is valid too...just takes a bit longer to restore service in the event of an outage.
0
 
lgropperAuthor Commented:
I have been doing a ton of reading on everything and the Contivity supports VRRP.  So that was the plan.  2 of them failing over to each other.  But i also have another firewall that is not doing that much work, a sonic wall 3060 that i could purchase a second of instead of the contivity.

I am just debating between the two.  It seems the sonic wall is more advanced with content and anti virus filtering that i could take advantage of...

Any chance you have worked with either?

Thanks,
0
 
rburns50Commented:
I have worked with Contivity quite a bit, and like them...a little pricey, but good documentation and support, and very easy to set up and maintain. I was on a Sonic Wall once (a company we bought had one)- not much experience with it, but to me it was not an enterprise-grade product...sorry if I am off on that opinion (little to go on). My personal choice would be the Contivity- it does what it is supposed to do...antivirus and content filtering is not really the job of a firewall I think...
0
 
lgropperAuthor Commented:
Sounds like a plan! just thought it could add some extra filtering and things... but i feel the same, the contivity is a superb device.  Thanks for the help!

0
 
rburns50Commented:
nod a doll
0

Featured Post

A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now