jeremy95926
asked on
2 Site Point-to-Point T1 with Internet Access
We have two sites that currently connect to each other over the internet with a VPN. Each site has their own T1 to the internet. We have ordered a point-to-point T1 to give us better speed and reliability between sites. Both sites use public IP's with full class-C addresses. I've never setup a cisco router to make such routing choices:
Site 1 Net 216.217.1.1/255.255.255.0 --> 172x cisco --> firewall --> T1 Internet Router --> Internet
||
||
Point-to-Point T1
||
||
Site 2 Net 209.125.126.1/255.255.255. 0 --> 172x cisco --> firewall --> T1 Internet Router --> Internet
At minimum we would like to have the 172x's route through the private line traffic destined for the other site and through the firewall if it is for any other network. Ideally, the 172x's would failover to the firewall if the private line were down. Some help with the configs would be really great.
Thanks!
Site 1 Net 216.217.1.1/255.255.255.0 --> 172x cisco --> firewall --> T1 Internet Router --> Internet
||
||
Point-to-Point T1
||
||
Site 2 Net 209.125.126.1/255.255.255.
At minimum we would like to have the 172x's route through the private line traffic destined for the other site and through the firewall if it is for any other network. Ideally, the 172x's would failover to the firewall if the private line were down. Some help with the configs would be really great.
Thanks!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Sounds right.
The real key is that this router, and not the firewall, is the default gateway for all the local LAN clients and servers.
The real key is that this router, and not the firewall, is the default gateway for all the local LAN clients and servers.
Yes, that is right.
ASKER
1) the firewall is separate hw from the cisco
and
2) if I understand what you are saying...I'm making it harder than it really is. If I place the cisco in the network as I've shown in the diagram above. Make sure it is working w/o the serial p-2-p as desired with default route to the firewall. Thensetup the Cisco to handle the p-2-p over the serial as you normally would. Add a route to the other site with serial ip of the other site and traffic will route as desired and it will have redundancy too.
Did I get that right?