Solved

I need assistance designing a Redundant Cisco Infrastructure

Posted on 2011-03-21
4
614 Views
Last Modified: 2012-05-11
I am in the process of designing a redundant cisco infrastructure for customer.  Right now this network doesn't have any kind of hardware redundancy.  I've been tasked with implementing redundacy for the edge routers and Cisco ASAs to start.  See attached visio, this is my plan so far for redundancy.  How does it look?  Right now there is just one of each device in production, but once I come up with my plan I will be adding the redundant/failover devices.  I'm just curious if this looks like a good design that will accomplish my overall goal of redundancy.    Thanks. Redundancy Plan
0
Comment
Question by:denver218
  • 2
  • 2
4 Comments
 
LVL 18

Expert Comment

by:jmeggers
ID: 35183776
First off, I think you're on the right track.  However, with what you've drawn, you may need a switch on the outside of the routers to connect to the ISP unless the ISP can give you two links with two addresses from the same subnet.  

There's a bigger question, though, of how far you want to carry redundancy.  Is a single ISP really sufficient? Even if the ISP is running dual links you your location, there's probably a good chance they're running through the same media for some distance, and even if they are on separate media, they're probably right next to each other, meaning a single backhoe could take both of them out.  True redundancy means two different ISPs, with entry points on different sides of the building, with fiber going in different directions to different COs, redundant power through different supplies, etc.  (I've heard of at least one instance where a redundant setup out different ends of the building was still not really redundant when both lines wound up in the same bundle and were taken out by a backhoe.)  Of course, that's going to cost more -- more dollars, and more time and effort managing the implementation to make sure all those bases are covered.  Only your customer can determine how much redundancy they really want to pay for.
0
 
LVL 4

Author Comment

by:denver218
ID: 35189044
This customers infrastructure actually lies in a Datacenter, where the ISP actually does have dual links and they guarantee 100% up-time.  The ISP does give me two links with two WAN Addresses.  This customer has been in this datacenter for about 18 months so far without any downtime related to the ISP.  The only down-time they have had is when hardware fails, which is why I've been tasked with setting up redundancy.  I'm most concerned with hardware redundancy for the equipment I've shown above.  I understand Its hard to be 100% redundant and so does my customer.  I'm just more concerned about redundancy for the edge routers, ASAs, and Core Switches.  Thanks.
0
 
LVL 18

Accepted Solution

by:
jmeggers earned 500 total points
ID: 35193778
If the ISP links are not the problem, and if the addresses they're giving you are in the same subnet, then you should be in good shape.  It would be good to know what device they have on the outside of your routers to make sure that HSRP will failover cleanly, but it's probably not a big deal.  Typically it's a switch you control, but not in this case, so it's the only thing I see that raises a question.
0
 
LVL 4

Author Closing Comment

by:denver218
ID: 35200627
Thanks.  I will keep going on this path then.  I appreciate your input.
0

Featured Post

Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

Join & Write a Comment

Suggested Solutions

Security is one of the biggest concerns when moving and migrating your data from your on-premise location to the Public Cloud.  Where is your data? Who can access it? Will it be safe from accidental deletion?  All of these questions and more are imp…
Exchange server is not supported in any cloud-hosted platform (other than Azure with Azure Premium Storage).
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now