Lance Jennings
asked on
Configuration to use my datacenter HSRP router setup
I am putting together some phone equipment and servers in a datacenter cabinet. The datacenter is providing us a redundant router connection using HSRP. The cabinet has two Ethernet cables: primary, secondary.
We need external routable addresses for each of the two border controllers for the phone system. They have a WAN port and a LAN port so they can have an external (outside the firewall) connection and also have a local IP address in the same subnet as the servers in the cabinet.
We are trying not to purchase another $2000 Cisco switch for the setup to accept the 2 Ethernet connections.
We have a WatchGuard M370 firewall device with several ports that can be configured in many ways.
We have two layer 2 switches available in the cabinet for use outside and/or inside the firewall. It is a layer 3 device.
I need help in the configuration of this system.
One suggestion was to take the two datacenter network cables and plug them into a standard Layer 2 switch then patch that switch into an external interface on the firewall. After so many attempts I am trying to remember but I think the path to the internet was broken when BOTH router cables were plugged into that switch. I am going back to the datacenter tomorrow to try more things but I wanted to get some input from you guys first. I have the datacenter IP sheet where they provide me the configuration info but didn't want to post live addresses on this site. Basically they gave me a \29 subnet and most of those IPs were used in the HSRP config by the datacenter. They also game me another \29 subnet that gets routed back to an address in the first subnet.
Any help would be greatly appreciated as this is my first time dealing with an HSRP pair.
Thanks,
Lance
We need external routable addresses for each of the two border controllers for the phone system. They have a WAN port and a LAN port so they can have an external (outside the firewall) connection and also have a local IP address in the same subnet as the servers in the cabinet.
We are trying not to purchase another $2000 Cisco switch for the setup to accept the 2 Ethernet connections.
We have a WatchGuard M370 firewall device with several ports that can be configured in many ways.
We have two layer 2 switches available in the cabinet for use outside and/or inside the firewall. It is a layer 3 device.
I need help in the configuration of this system.
One suggestion was to take the two datacenter network cables and plug them into a standard Layer 2 switch then patch that switch into an external interface on the firewall. After so many attempts I am trying to remember but I think the path to the internet was broken when BOTH router cables were plugged into that switch. I am going back to the datacenter tomorrow to try more things but I wanted to get some input from you guys first. I have the datacenter IP sheet where they provide me the configuration info but didn't want to post live addresses on this site. Basically they gave me a \29 subnet and most of those IPs were used in the HSRP config by the datacenter. They also game me another \29 subnet that gets routed back to an address in the first subnet.
Any help would be greatly appreciated as this is my first time dealing with an HSRP pair.
Thanks,
Lance
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks guys. Ended up getting the datacenter to address the issues.
what kind swithes do you have in youre rack. when they support the technology behind the 2uplink cables. you only need to create a vlan, with the interfaces of the etherchannel and one to youre firewall.