• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1017
  • Last Modified:

DUAL ISP failover and Redundancy

Hi,

I have a Cisco 1900 series router and two ISPs has been connected to that yhrough two GE Pots and other port is conected to LAN

My LAN having 6 vlans

My requirement is as below :

1) First three VLANs has to pass over ISP-1 and remaining three VLANs has to pass via ISP-2

2) If isp-1 gets down the all VLANs traffic has to pass over ISP-2 and vice-Versa

Scenarios is as below


                        ISP 1                  ISP2
                             \                  /
                             Cisco Router
                                  |
                            L3 Switch
                          /           |                  \
                  VLAN 10       VLAN20.. .. ..VLAN 60


Pls provide a solution of the above

Regards
Ramu
0
RAMU CH
Asked:
RAMU CH
1 Solution
 
Don JohnstonInstructorCommented:
You'll need to use policy based routing to split the traffic between the ISPs and object tracking to handle the failover.

Here's a template for the PBR:

int f0/1
 description outside interface 1
!
 int f0/2
 description outside interface 2
!
int f0/0
 description inside interface
 ip policy route-map alpha
!
route-map alpha permit 10
 match ip address server
 set ip next-hop <next-hop IP for ouside interface 1>
!
route-map alpha permit 20
 match ip address pc
 set ip next-hop <next-hop IP for outside interface 2>
!
ip access-list standard server
 permit <server ip network>
!
ip access-list standard pc
 permit <pc_networks>

Open in new window


And here's a template for object tracking:

int f0/0
 description inside interface
 ip policy route-map alpha
!
track 123 ip sla 1 reachability
 delay down 30
!
track 234 ip sla 2 reachability
 delay down 30
!
ip sla 1
 icmp-echo <object 1 ip address> source-interface <outside interface to ISP1>
 frequency 10
ip sla schedule 1 life forever start-time now
!
ip sla 2
 icmp-echo <object 1 ip address> source-interface <outside interface to ISP2>
 frequency 3
ip sla schedule 2 life forever start-time now
!
route-map beta1 permit 10
 match ip address inside_nets
 match interface Vlan1
!
route-map beta2 permit 10
 match ip address inside_nets
 match interface Vlan2
!
route-map alpha permit 10
 match ip address executive
 set ip next-hop verify-availability <next-hop IP for ISP1> 10 track 123
 set ip next-hop verify-availability <next-hop IP for ISP2> 20 track 234
!
route-map alpha permit 20
 match ip address everyone_else
 set ip next-hop verify-availability <next-hop IP for ISP2> 10 track 234
 set ip next-hop verify-availability <next-hop IP for ISP1> 20 track 123
!
ip access-list standard executive
 permit <executive ip network>
!
ip access-list standard everyone_else
 permit <non_executive_networks>
!
ip access-list standard everyone_else
 permit <all inside IP networks>

Open in new window

0
 
RAMU CHAuthor Commented:
Good
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now