Cisco HSRP / Extended VLAN / BGP questions
Posted on 2009-05-20
I am trying to connect with a vendor from the main site and hot site via the vendor provided Cisco VPN router in each site behind the Cisco ASA 5500 DMZ interface. Both sites have its own Internet T1 and they are MPLS connected in the backend.
The goal is to establish the server 1 (vendor's end) with server 2 (main site); however, during DR, server 1 will be routed to server 3 (hot site). In addition, server 1 can be re-routed back to server 2 via MPLS from the hot site to main site.
The options seem to be using HSRP with Extended VLAN across two sites or BGP. There may be other options that I am not sure. Please advise. We are all Cisco shop.
vendor server 1 = 10.10.10.10
main site server 2 = 172.16.1.10
hot site server 3 = 172.16.2.10
vendor VPN router #1 (VR1) = 10.10.1.11
main site ASA firewall DMZ GW / subnet (FW1) = 10.10.1.1 / 24
main site ASA firewall LAN (FW1) = 172.16.1.254
main site MPLS router (MR1) = 172.16.1.1
main site 4600 layer3 switch (SW1) = 172.16.1.15 (VTP = transparent mode)
main site LAN GW / subnet = 172.16.1.15 / 24
vendor VPN router #2 (VR2) = 10.10.2.11
hot site ASA firewall DMZ GW / subnet (FW2) = 10.10.2.1 / 24
hot site ASA firewall LAN (FW2) = 172.16.2.254
hot site MPLS router (MR2) = 172.16.2.1
hot site 3700 layer3 switch (SW2) = 172.16.2.15 (VTP = transparent mode)
hot site LAN GW / subnet = 172.16.2.1 / 24
Please provide steps / show conf.