ISP Load Balancing

Posted on 2012-03-10
Last Modified: 2014-08-09

It is my first time subscribing to Expert-exchange, I am in mid-career PS Engineer, and i have my first inquiry

We are having two links, one about 100 Mbps ,, other about 150 Mbps or more

We want to supply to two types of customers, one is through a wimax network,, other is dedicated service

-goal 1 :We want to have these two inputs (wimax and dedicated) share the 100 and 150 Mbps links

We don't want at any time to find one of the links congested,,, and if the two links are to be congested ,,, i.e max traffic ,, we want the dedicated service users not to feel the congestion and not to be effected

-goal 2: this is to be done later ,, when link is congested for the system to detect it fast and limit the p2p and download traffic ,, to make browsing faster and congestion undetectable by customer as any degradation in service

What we have in mind till now is the following

Solution 1: Cisco Router

-Pros Cisco Router can provide as many inlets and outlets as you desire,, can provide BGP for multi-homing , cheaper than other solutions

-Cons You cannot provide very accurate load sharing, the suggested method is having 2 default routes with equal metrics

At best this will provide ,, 100 Mbps to both links ,, and when one link is congested ,, Link1 ,,, the other link : Link2 will be free ,,,

Solution 2 : Baracuda link Balancer

-Pros Very good Load balance for different BW links

-Cons only one inlet, and doesn’t support source ip routing + it doesn’t make route policy for Cache server

Solution 3 : AscenFlow

Pros   good DPI integrated for type of service detection and source IP Address QoS

Cons: expensive and not sure if it detect congestion,, + not supporting load balancing, cannot be used as edge router

We haven't tried any of these solutions before ,,, so any suggestions from the experts ?
Question by:telecomX
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
LVL 17

Accepted Solution

TimotiSt earned 334 total points
ID: 37707151

I'd use a server with redundant hardware, running zeroshell:

Cisco routers aren't too good for load balancing without routing protocols;
Barracuda gear is usually nice, but too simplified for your problem, like QoS for p2p traffic.
I've never used AscenFlow before, but if it can't load balance, then it's not for this task.


Author Comment

ID: 37707742

Is ZeroShell really for ISPs ?

I have read about it before ,, but as i understood ,, ZeroShell run live from CD ,, and it cannot be installed on a Linux machine

If we want to use routing protocols, can we load balance 150, and 100 Mbps links  in a good manner,,, with lets say , OSPF ?
LVL 17

Assisted Solution

TimotiSt earned 334 total points
ID: 37707922
According to the zeroshell website: "It is available in the form of Live CD or Compact Flash image". It can be installed on a server.

The one and only routing protocol between ISPs is BGP. It's robust, scalable, wonderful, but really not trivial to setup in a full load-balancing, redundant, highly-available config.
Also, BGP won't do you any QoS, that's a different topic.

If you want to be a real ISP, you can buy a Cisco/Juniper router cluster, and a NetEnforcer/AscenFlow/other QoS appliance cluster, maybe a firewall cluster and a spamfilter cluster, but judging from your original post, that would be going a bit overboard.

I don't know the size of your operation, but I'd stick with a less elegant, but all-in-one solution with policy routing. In my opinion, this will most likely be some sort of a Linux/BSD box, like Zeroshell, maybe IPCop, or something like them.

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!


Author Comment

ID: 37712162
Hi, Thanks for your help

Will cisco router 7201,  be good enough to implement BGP here ?

Actually, we already have Wimax Network from Huawei with Redundant Firewall at the edge

Now we are planning to expand our connectivity with the other link

Any idea how reliable will IP cop and other similar solutions will be with high traffic ? we have till now more than 350 requests/sec with about 100 Mbps link

Will the traffic go smoothly without any delay or jitter ,,, will the network be stable enough and will we have high availability ? if so ,, how we can make it by default to bypass the IPCOP or similar server if any failure happen ?

Thanks for your help and support

Author Comment

ID: 37741576
Hi TimotiSt

Will a normal router with routing protocols support the above scenario ?
LVL 17

Expert Comment

ID: 37743189
Yes, the 7201 should be able to handle pretty much everything at 100/150 Mbit speeds.

Since this is starting to look like a bit more complicated scenario than I first believed, I think maybe you should contract an experienced network engineer to design the new network topology and liaise with your upstream ISPs on things like BGP peering, failover, etc.


Assisted Solution

by:Jean Maurice Prosper
Jean Maurice Prosper earned 166 total points
ID: 38001509
It looks like you need a mixture of some solutions. We provide and install both the AScenlink and the BArracuda.
but your setup seems a bit more complex. Cisco router wont be that ideal of a choice for what you want to do.

you should however have a look at the following :


In and ideal setup you would have a link balancer, a bandwidth controller and a Cache engine that would give you a terrific service to the customers.... but again, it depends on what you really want to achieve and what budget is available.

you can contact me if you need further help on the design side of the topology.  We have been supplying and supporting ISPs..

Featured Post

Webinar June 1st - Attacking Ransomware  

The global cyberattack that corrupted hundreds of thousands of computer systems on May 12th had a face, name, & price tag that we’ve seen all too often in recent years: Ransomware. With the stakes – and costs – of a ransomware attack higher than ever, is your business prepared ?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Automated backups of ASA's and Nexus (5k and 7K) 24 179
Show IP BGP Information 10 73
HP 2530 switch and routing 4 99
IP Jumping 6 73
Moving your enterprise fax infrastructure from in-house fax machines and servers to the cloud makes sense — from both an efficiency and productivity standpoint. But does migrating to a cloud fax solution mean you will no longer be able to send or re…
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question