Sharing ARIN IP block between two datacenters
I currently only have one data center. We are in the process of opening up a second data center for redundancy. We operate an entire Cisco network infrastructure from WAN routers, firewalls, IPS, and switching. We are going to get a /22 block from ARIN, and an ASN so we can run BGP, and use that IP block between to the two data centers. Can I split this /22 block up, and use a /24 at one data center, and a /24 at another data center? Is this possible, if so, is there a configuration document that explains this more in depth, or can someone provide an example? Now at data center 1, I currently have about 150 Static NAT's configured on the ASA. At datacenter 1, once we get our ARIN block, and RE-IP all these static NAT's, how do the Static NAT's work if a failover would occur to datacenter 2?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
So you have 150 applications/websites published at Site 1. You need to publish those same 150 applications/websites at Site 2 using the Site 2 address block.
Now, what happens when Site 1 goes dark? You need to update your DNS records to direct traffic to all of the Site 2 IP addresses. You can do a manual failover, or you can use a global traffic management service to automatically detect the outage and automatically redirect traffic.
Now, what happens when Site 1 goes dark? You need to update your DNS records to direct traffic to all of the Site 2 IP addresses. You can do a manual failover, or you can use a global traffic management service to automatically detect the outage and automatically redirect traffic.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Can I use the same ASN for both datacenters?
Yes.
ASKER
Thank You!
ASKER
As far the second part in regards to my 150 static NAT's that are configured on my ASA in datacenter 1, I still need a little clarification to fully understand. Let's say I have 150 static NAT's on my ASA, utilizing IP's from the /24 block I assigned to DC 1 from my /22 block of routable IP's I have. If fail over occurs, do those same 150 static NAT's need to be configured on the ASA in DC 2? Since DC 2 will have a separate /24 block, I am unsure how that occurs. Could you elaborate more on that process. Thanks so much for your help.