I have 2 ISP T-1 connections, each with a class C ip address block and registered BGP AS. Both ISPs have the BGP configurations and ACL's setup correcly on their side so they can route either C subnet to/from the Internet.
We have an Internet business but only currenly use addresses on one of the ISP subnets (the other class C has no addresses in use).
The goal is to have complete redundancy without a single point of faulure all the way to the LAN and DMZ.
We have 2 2821 routers, 2 29xx switches, and 2 5520's. The idea is to do some kind of full mesh on the router-firewall interior side but I can't figure out how to do it or find a configuration example to help.
For right now, we've got the 2821's connected through a single switch to the 5520 pair. The eBGP and iBGP works, we use HSRP for the 2821's, and Active/Active for the 5520. But the sole 29xx switch is a single point of failure.
I've got an extra interface on each 2821, 5520, and another 29xx switch to use.
These doc's are usefull but don't fully help with my config.
TIA for any help!