2 routers, 2 ISP, 1 Inside HTTP Server

Unanswered Question
Sep 4th, 2007
User Badges:


I have a problem with this simple architecture, I have 2 877 Adsl router connected to internet, each one with his own internet static IP adress.

I made an HSRP group with this 2 routers.

I need to made an Http server joinable from Internet, so I configure static IP Nat on the 2 router.

The problem is that :

- when I browse my http server from internet, I can arrive on the ISP2

- when the Http server replies, the HSRP's group master could :

- forward the packet to the ISP2 router : so it works

- forward the packet directly on ISP1 : so it doesn't work because we don't use the same path

Do you see what I mean ???

Is there an answer ???


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
mheusing Tue, 09/04/2007 - 08:17
User Badges:
  • Cisco Employee,


The issue at hand is, that your server does route all packets to the HSRP active, when sending towards the internet no matter where it was received from.

The only solution I can think of is to double NAT. You could use two private IP ranges like for R1 and for R2 to NAT any IP packet arriving at your two WAN routers destined for the server. Additionally set static routes in the server for those two ranges pointing to the respective router. As a result you would make sure that a request coming in through R1 will be answered through R1 by the server and the same for R2.

Example config:


interface Serial0

ip address

ip nat outside

interface Ethernet0

ip address

ip nat inside

ip nat pool R1 prefix-length 24

ip nat outside source list 100 pool R1

ip nat inside source static

access-list 100 permit any host !server IP as seen from the internet

I never tried this in a lab, so it is just an idea. In case it works, please provide the feedback.

Regards, Martin

infomil Sun, 09/09/2007 - 23:08
User Badges:

Hi martin,

Thanks for your reply, your solution works great.

Regards, Christophe


This Discussion