Am a little confused here. Can the same bandwidth utilized for WAN be also utilized for internet access. A vendor submitted a proposal and is quoting differently for both. I know they are two different services but the client wants both WAN and Internet services. I figured at locations where internet access wants to be denied its a matter of an acl or a policy stmt on the rtr.
Some providers can sell you "MPLS" with local internet hopoff, which means that the "WAN" can be used for both internet and site to site connectivity. (You send all of your traffic to the ISP router, they determine if it is internet or site to site and they send it to the internet for you if neccesary; it's all handled by them in their "cloud")
You can also get MPLS only, which is strictly site to site access. You can then get a separate internet connection, either at the HQ only, and route all sites out using it, or get an internet feed at each site and use PBR or something to send internet traffic out locally and site to site across your MPLS.
There's a million ways to do it. It depends on what you're being quoted. To answer the question you'd need to show us the quote and/or call the vendor to get them to explain exactly what you're buying from them...
Let's say you have 100 sites and a HQ where datacenter is:
You get two lines 1 for internet and 1 for MPLS which will interconnect all sites together through ISPs MPLS cloud.
If sites wanted to go to the internet they would come through WAN (mpls or whatever), ideally hit your proxy/firewall and hit the internet through your internet line, meaning you would need to connect WAN router and INTERNET router together.
Also you can have internet at each site and have some kind of PBR as Andrew mentioned which would say .. if the destination is for www.google.com go thru interface fa0/1 if the destination is for your datacenter server somewhere go through serial 0/0 or whatever you have, but supporting that as sites addup would be a problem.
Get some DSL/CABLE at each site and run some backup connection to HQ like Eigrp through DMPVN and so on.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...