Avatar of disca1
disca1
 asked on

ISP Subnet/Vlan design with redundancy in mind!

Help urgently needed with the design of a new network! History - Previously we have had a single /24 routed to us by a third party isp and just put all the servers in this single subnet.
Obviously this was bad design but I now have the oppurtunity to correct it before moving clients onto the new network so want to get it right!

BGP A/B          BGP B/C
   |                     |
Router 1 ------ Router 2
   |                     |
Switch 1 ------ Switch 2


We have a /22 of IP's. The routers are cisco 7204VXR's and the switches are HP procurve 2650.

What I'm after is a design that seperates the clients into their own dedicated vlan's but provides them with a redundant gateway address in case of router failure.
I've experimented with using HSRP to provide the gateway for each subnet but it seems it would use three router addresses per subnet?

I.e
Router 1 IP
Router 2 IP
HSRP IP

The HP procurve has some basic L3 routing capabilities so it's possible that could be used as the gateway IP for each subnet?

When a customer requests additional IP's beyond their initial subnet - how are they best added - does another gateway IP get assigned etc etc?
NetworkingNetwork OperationsNetwork Architecture

Avatar of undefined
Last Comment
pjtemplin

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
harbor235

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
disca1

ASKER
Hi harbor235,

Clients - currently about 20 taking dedicated servers. Again none of them are on the new network yet so I can implement whatever is best!

We have NPE400's in the 7204VXR's with 512mb Ram.

What additional hardware would I need for the model you have discussed? I'm willing to spend some money (not huge amounts) to get the best network possible for my clients.

Future requirements are just that its scaleable we have pretty slow growth rates and can't see more then 50 dedicated server clients in the next 12 months.

Do you think its a problem using 3 router addresses for each client? Just seems somewhat wasteful hence I wondered if anyone had any better ideas?

Thanks!
pjtemplin

It's not wasteful if it gets the job done.  We have several colo clients, and the normal assumption is that they're going to put a router in place between their LAN and us.  We burn a /29 so that both we and they can run HSRP, and even go so far as to set up BGP customers so we're ready to peer with all three addresses (their only router on the "virtual" IP, or when they do HSRP both of their routers) and instruct them to peer with all three addresses.
disca1

ASKER
Hi pjtemplin,

Thanks for the response. My concern was more with the following scenario :-

Client signs up and we give them a /29
.8 Network address
.9 "Virtual" Router IP
.10 Router 1
.11 Router 2
.12 Client 1
.13 Client 1
.14 Client 1
.15 Broadcast Address

Now what if the client says they want some more IP's do I just create another subnet in the same format - all be it possibly larger?

Presumably in order for this second subnet to be routeable we should add it to the interfaces on the routers as well.
I.e in every subnet we create, 5 IP's are unusable (Network, virtual ip, router 1, router 2, broadcast)

If thats the best way to do it then thats cool - my thoughts were that its a shame the HSRP IP can't be the only IP on the interface or that maybe we couldn't do something with the minimal L3 capabilities of the switch so that it functioned as the default gateway and then forwarded packets onwards to a single HSRP IP.

Using up the IP's we have is a factor as they are PI space but also ensuring I get this right first time is the second more important one!

Thanks!
This is the best money I have ever spent. I cannot not tell you how many times these folks have saved my bacon. I learn so much from the contributors.
rwheeler23
SOLUTION
pjtemplin

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question