Internet Redundancy

Unanswered Question
Oct 1st, 2007

I have two campuses, each with their own 100Mbps Internet connection, that I would like to configure for Internet redundancy.

My current setup consist of a split class C address block where we route addresses 192.231.40.1 - .128 to campus A and addresses 192.231.40.129-.254 to campus B.

I am wanting to do an active/active type configuration so that both connections can be equally utilized during normal operating conditions, so that failover is in place during an outage at one campus. Do note that I am using the same ISP for both connections. I am thinking that I'll need (2) ASA5520's to do this. What I'm a little uncertain of is how I need to configure the equipment behind the firewall to support this type of configuation.

Do note that I am open to any other suggestions in regards to my redundant Internet solution. Any ideas would be great.

Thanks

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Anonymous (not verified) Wed, 10/17/2007 - 15:34

You can use the two ASAs to firewall your internet connections. Then configure them to inject default routes into OSPF on the inside on the network. This will take care of your outbound traffic.

Since you are using the same provider for both connections you can have them add floating statics for you public blocks so that 192.231.40.0/25 can be routed to campus B in the event of an outage and vice versa. This will take care of your inbound routing.

Hope this helps,

Jason

Actions

This Discussion