Solved

Cisco 3560 Layer 3 Switch - mutiple IP routes?

Posted on 2013-06-23
4
535 Views
Last Modified: 2013-07-18
I am able to add the following to my Cisco 3560 Switch:

ip route 0.0.0.0 0.0.0.0 192.168.2.101
ip route 0.0.0.0 0.0.0.0 192.168.2.102 100

This makes me think should connection be lost to x.101 then traffic should be sent to x.102.  This does not happen.

Why?

Thanks.
0
Comment
Question by:Adam D
  • 2
4 Comments
 
LVL 25

Expert Comment

by:Zephyr ICT
ID: 39269239
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 39269368
Your failover approach would only work if each route used a different interface. Even then, the failover would only work if the failure was detectable (interface state changed).

As it is, object tracking (SLA) is your best choice.

Here's another guide: Reliable Static Routing Backup Using Object Tracking
0
 
LVL 1

Author Comment

by:Adam D
ID: 39270016
Thank you both.  I am looking into this option in more detail.  Here is what I have done so far:

ip sla 1
icmp-echo 4.2.2.2
frequency 5
exit
ip sla schedule 1 life start-time now forever
end

This, in theory, will ping 4.2.2.2 (name server) every 5 seconds (just for testing purposes) and in theory if my primary route does not respond then it should go to the secondary route, right?

The switch is connected to two firewalls which are in turn connected to two separate ISP connections.  Each firewall has its own IP address. If the ISP goes down (not the firewall) then my intention is to allow the switch to send traffic to the alternate.

I pulled the internet connection on my primary but it did not "failover." What do you think I am missing?

Thanks.
0
 
LVL 50

Accepted Solution

by:
Don Johnston earned 300 total points
ID: 39270048
There's a bit more to do. You've identified the object, but not what to do if it's unreachable.

Here's the second part.

http://www.cisco.com/en/US/docs/ios/dial/configuration/guide/dia_rel_stc_rtg_bckup.html#wp1064942
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Direct Access 2012R2 Two Network Card Configuration Behind TMG 2010 3 52
How does VLAN work? Scenario: (please read the question) 11 121
HSRP needed? 4 52
CCNA lab 6 37
In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
Before I go to far, let's explain HA (High Availability) and why you should consider it.  High availability is the mechanism used to provide redundancy to any service at the same site and appears as a single service to the users of that service.  As…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question