Network Kill Switch
Good Evening All,
I ideally would like some ideas based on a potential request that might be coming down the pipeline.
My primary internet comes over a P2P link from another location, that terminates into a fiber patch panel then splits into two separate internet connections.
Connection 2 terminates into a 12p fiber switch then uplinks to our core router. This is where the bulk of our traffic comes through. Connection 2 also provides telephone access to main office and out to the outside world.
Connection 1 terminates into a FW, uplinks to a couple switches then another router. This is our second provider out to the real world.
(traffic is routed via gateway addresses, to determine what ISP to use)
There is also a satellite link, which is connected to the same router as connection 1 , and this provides long distance calling only.
Based on the fact we have three connections out, if we want to shutdown all comms, including the P2P link (WHICH WE DO NOT MANAGE, ISP DOES) and we ONLY have access to CON1 & CON2 routers/switches is there a way to completely sever the link?
Has anyone installed anything or written a script that can run putty commands to shut down switch interfaces?
Here is a diagram to refer to
I ideally would like some ideas based on a potential request that might be coming down the pipeline.
My primary internet comes over a P2P link from another location, that terminates into a fiber patch panel then splits into two separate internet connections.
Connection 2 terminates into a 12p fiber switch then uplinks to our core router. This is where the bulk of our traffic comes through. Connection 2 also provides telephone access to main office and out to the outside world.
Connection 1 terminates into a FW, uplinks to a couple switches then another router. This is our second provider out to the real world.
(traffic is routed via gateway addresses, to determine what ISP to use)
There is also a satellite link, which is connected to the same router as connection 1 , and this provides long distance calling only.
Based on the fact we have three connections out, if we want to shutdown all comms, including the P2P link (WHICH WE DO NOT MANAGE, ISP DOES) and we ONLY have access to CON1 & CON2 routers/switches is there a way to completely sever the link?
Has anyone installed anything or written a script that can run putty commands to shut down switch interfaces?
Here is a diagram to refer to
Forgive me if I'm missing something, but why not just shutdown the interface on the switch? BGP seems far more complicated when you can just kill the port....
You would need to kill 2 switches.
Also killing a port could potentially have negative effects while killing the route still allows certain forms of communication if desired.
Also killing a port could potentially have negative effects while killing the route still allows certain forms of communication if desired.
ASKER
Yes unfortunately we are dealing with three interfaces
1. Connection 1 > Main Office
2. Connection 2 > Main Office
3. Satellite Link > Long distance phones
1. Connection 1 > Main Office
2. Connection 2 > Main Office
3. Satellite Link > Long distance phones
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
This will stop all traffic using default gateways. You may need singular routes for iBGP to work that point to your individual networks/routers only.