Solved

ISP redundancy issue

Posted on 2014-01-07
6
203 Views
Last Modified: 2014-01-20
We have two internet link in a Router.

When one link fails automatically second link also getting down.

We have deployed IPSLA to track the interface..

Wil share the config shortly

Regards
Ram
0
Comment
Question by:RAMU CH
  • 3
  • 3
6 Comments
 
LVL 11

Expert Comment

by:Miftaul
ID: 39764406
Do you use Routing protocol on the router or use static default routes pointing to ISP next-hop.

Which router are you using to connect to ISP.

If it is Cisco, Floating static route with IPSLA can work out here.
R1(config)# ip route 0.0.0.0 0.0.0.0 1.1.1.1 track 1
R1(config)# ip route 0.0.0.0 0.0.0.0 2.2.2.2 10
IPSLA commands varies with CISCO Router IOS version. We can give you exact config as we know about your router IOS.

In SonicWall, you need to go to Network - > FailOver and load balancing.  You can set Failover type here.
0
 
LVL 1

Author Comment

by:RAMU CH
ID: 39764611
Regret that not shared needful details:

Here are the details :

Device is Cisco

Model : 2800 series

version 15.0

Scenario :


         ISP1                    ISP2
                               
                \                  /
              cisco 2800 router
                       |
                    LAN




On Cisco 2800 series Router

Primary ISP details  :

Interface :  GigabitEthernet0/0
Ip address :  10.224.47.33

Secondary ISP details :

Interface :  GigabitEthernet0/0
Ip address :  10.224.47.33


About Routes are in the attached config fie.


My requirement is simple :

If primary ip fails , second isp should take care and onc eprimary comes back then traffic shouls pass over Primary ISP


Attached config file and SH version output

Regards
Ram
changed-Router-cofig.log
0
 
LVL 11

Accepted Solution

by:
Miftaul earned 500 total points
ID: 39764679
You have a typo, your both ISP address seems to be same.
I believe the second link is at FastEthernet0/0/1 with next-hop 10.205.120.2  

You already have two IP SLA object configured
ip sla 111
 icmp-echo 10.224.47.37 source-ip 10.224.47.33
ip sla schedule 111 life forever start-time now

Open in new window

We could make it little smarter.
R1(config)# ip sla 111
R1(config)# icmp-echo 8.8.8.8 source-interface GigabitEthernet0/0
R1(config)# timeout 1000
R1(config)# threshold 2
R1(config)# frequency 3
R1(config)# ip sla schedule 111 life forever start-time now

Open in new window

It is always good to set the icmp-echo to some remote IP, not the ISP next-hop IP. Because it might be that the ISP link is up as we have connectivity but ISP might not have their upstream connectivity still showing our lin kas up.

The default route should look something link this.
R1(config)# #Static Default route to Primary ISP next hop 10.224.47.34. Due to track
R1(config)# ip route 0.0.0.0 0.0.0.0 10.224.47.34 Track 111
R1(config)# 
R1(config)# #Static Default Route to second ISP next-hop 10.205.120.2, we increased the metric to 10 to make it floating
R1(config)# ip route 0.0.0.0 0.0.0.0 10.205.120.2 10

Open in new window

You need to look into the many static routes that are there, some don't seem necessary
0
What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 
LVL 1

Author Comment

by:RAMU CH
ID: 39764927
Thanks fot the solution

 but it makes ISP as active /standby

 but in my scenario ,

ISP links  should be Active/Active

Regards
Ramu
0
 
LVL 11

Expert Comment

by:Miftaul
ID: 39764945
Proper load sharing doesnt smartly work using static route, it works some sort using ip cef. If our intention is to keep both the links active, we could keep the above default routes. And use Policy Based Routing to route some interesting traffic over the second link.
Bgp could do that but thats not feasible here.
0
 
LVL 1

Author Closing Comment

by:RAMU CH
ID: 39793958
Tks
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Hello to you all, I hear of many people congratulate AWS (Amazon Web Services) on how easy it is to spin up and create new EC2 (Elastic Compute Cloud) instances, but then fail and struggle to connect to them using simple tools such as SSH (Secure…
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now