I have new Internet provider who gives me internet in very strange way. I wanted two different speeds for local Internet(national internet, in the country only) and International (world wide). The ISP provides me with 2 VLANs one for International traffic and second for local traffic (because of the different speeds we wanted). Both VLANs consist of two IP adds with /30 masks which is normal( one IP for my device and second for their device). They gave me a range of 8 public IPs as well from different network. My question is: Do I have to setup only SVI's for these vlans or I have to create subinterfaces on the port connected to the ISP. Actually the port that will be connected to the ISP has to be a trunk(because of the two VLANs). What is the common fashion to complete this task. Do I have to setup BGP because I have to have protocol to decide where to route different internet requests. My device is 2800 Router with 12.4(3h) IOS. The termination point of the ISP is DSL. Thanks in advance!!!
I would guess the question have to be answered by the ISP, as he has to configure his side and the settings have to match.
I wuld assume two dot1Q subinterfaces on your router will be required. Routing and addressing has to be defined by the ISP. I would assume running BGP will be required to select national and worldwide routes, but again, the ISP has to agree on that.
Is there any way to avoide the usage of BGP. It will smack the 2800 Router I think or I have to updrade the memory. Although I have to setup VPN Server on it as well. I already spoke to the IPS and they were NOT agree to provide me with a single VLAN (that would allow me to use a single default route to their router). Is there any way to route one of the traffics (International or Local) to static route and the other with BGP?? I just want to avoid the presence of 10 screens routing table and overload on the device. Any solution without BGP will be acceptable. Thanks in advance!
to avoid the usage of BGP, you can configure static routes for your local/international subnets (if there aren't hundreds of subnets) and for the rest, lets say internet traffic, you can use a default route.
But one remark -> the fact that you are using BGP doesn't mean your routing table will have thousands of lines. I'm running BGP on 2800 series as well. You can configure route-maps by yourself or ask your provider to send you only some routes and default gateway (second case is better, because you are saving your bandwidth).
The remark was really very good. You right. What about if I configure two default routes to both VLAN IP on the ISP's site with the same administrative distans? Will be the device confused where to look up for the best path to a destination???
In general you need enough routing information in a router to make forwarding decisions according to your requirements.
Lets for simplicity say you have Internet access through VLAN 666 and RFC1918 networks through VLAN 100.
In this case two default routes will not help you, as the router would not have enough information to forward to f.e. 10.1.1.1. What can be done in this example is to have 3 aggregates 10.0.0.0/8, 172.16.0.0/12 and 192.168.0.0/16 pointing to VLAN 100 and a default route for the internet.
So in case you are using static routes, the question is: Can you create aggregates like in the example above, and if so, how many?
In case the number of networks it reasonably low, this can work.
In other cases you should use BGP and the ISP should filter the internet table based on your requirements and send a default route for the rest of the internet, as already described in a previous post.
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...