Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
269
Views
0
Helpful
2
Replies

Load balancing over Internet link

tarunavakonar
Level 1
Level 1

‎06-14-2008 10:48 PM - edited ‎03-03-2019 10:21 PM

i have 2 internet link, both are in different pool

i want 1 link using for one proxy and another one for another proxy

i have one port connectivity between FW & Internet router

i am using NAT FW(Private to public) as well as internetrouter(public to public)

now i want failover over both link, if one link is goes down traffic shifted to another link.

plz suggest me the solution over PBR

Labels:
0 Helpful
2 Replies 2

Thotsaphon Lueangwattanaphong
Level 7
Level 7

‎06-14-2008 11:30 PM

Hi Tarunava,

Are you connecting to 2 ISPs? Public IP address that you nat on the firewall belonging to ISP1 or ISP2? If so you can nat only on one ISP.

Seems you need to seperate the traffics by using the services/ports.Let's assume that you want to Nat both links with each pool ip address.

ip access-l ex Proxy-80

permit tcp host any eq 80

ip access-l ex All-Traffics

permit ip host any

route-map input permit 10

match ip address Proxy-80

set interface RouterInterfaceToISP1 RouterInterfaceToISP2

route-map input permit 20

match ip address All-Traffics

set interface RouterInterfaceToISP2 RouterInterfaceToISP1

Interface

ip policy route-map input

----------------------

route-map interfaceISP1 permit 10

match interface RouterInterfaceToISP1

route-map interfaceISP2 permit 10

match interface RouterInterfaceToISP2

ip nat inside source route-map interfaceISP1 pool Pool-ISP1

ip nat inside source route-map interfaceISP2 pool Pool-ISP2

int Interface

ip nat inside

int Interface

ip nat outside

int Interface

ip nat outside

Hopes that makes you some idea.

Thot

0 Helpful

michaelchoo
Level 1
Level 1

‎06-16-2008 06:52 PM

Do you have your own address space allocated from IANA? If you're not sure, ask your ISP(s).

If you do have your own block of IANA-allocated addressing, you might want to consider getting a public BGP AS from IANA and run BGP with your ISP(s). If all you need is the ability to automatically fail over, BGP can definitely do it easily for you. Load balancing is tricky though, especially if you're connected to multiple upstream ISPs.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card