Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
462
Views
0
Helpful
1
Replies

WAN VLANs and ibgp on 7206 for backup site

dranoff
Level 1
Level 1

‎08-23-2010 09:36 PM - edited ‎03-04-2019 09:31 AM

Hi,

I am setting up a backup site. We will have a gig-e private metro ethernet from Atlanta to Tampa, very expensive >$9000 per month so I am trying to maximize it. I want to create three vlans on the metro ethernet link, one for internet traffic, one for private traffic, one for dmz traffic. Tampa has two 7206 routers, r1 and r2 each with one internet provider savvis, qwest, i run ibgp between r1 and r2 . I will be adding r3 in atlanta and atlanta will have internet provider level3.  I would like to run ibgp between tampa and atlanta for load sharing. I also would like the servers in tampa to be able to use the internet in atlanta and vice versa. On the lan side I would like to be able to route my lans over the second vlan. There is also a DMZ in tampa I want to be able to access from the dmz in atlanta. I would like different subnets for the dmz and lan in atlanta than tampa.

can someone give me some ideas.

TAMPA

-----------

r1-

fe0/1ip address  200.10.10.1  WAN

qwest 100mb

r2-

fe0/1 ip address  200.10.10.2 WAN

savvis 45mb WAN

metrolan 1gig

     vlan 10 ip address  10.0.10.1 LAN

     vlan 20 ip address 192.168.0.1 DMZ

     vlan 200 ip address 200.10.11.1 WAN

s1-

vlan 10 subnet 10.0.10 LAN

vlan 20 subnet 192.168.0 DMZ

ATLANTA

---------------

r3-

ethernet 200.10.11.1 WAN

level3 internet 1 gig

metrolan 1gig

     vlan 10 ip address  10.0.10.2

     vlan 11 ip address 200.10.11.2

s2

vlan 11 ip address 10.0.11

vlan 21 ip address 10.0.21

Labels:
0 Helpful
1 Reply 1

vdineshkumar83
Level 1
Level 1

‎08-24-2010 12:24 AM

Hi,

      Only consideration here is communication b/w dmz's and reachability to server from internet via redundant link in case of failure of primary.

For reachability to server via Internet

==========================

            Are  you having your own ip segment or using the provider's? If you are using your own then you have to advertise the same via all the providers to achieve reachability to your servers from internet. So that you can attain reachability to your servers via alternative provider if your primary/secondary link is down.Else if you don't have your own segment then have to do nat accordingly on wan to achieve the same.

For reachability to internet from server

============================

            For servers in tampa to use internet in atlanta, advertise default from atlanta via Ibgp and see to that tampa internet link is preffered when its is up, when it goes down it prefers default via ibgp and go to atlanta. (have to do the same for servers in atlanta as well)

l

Hope got your question to an extent, If i am wrong do let me know

Regards,

V Dinesh Kumar

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card