I have a slight disagreement with my co-workers here. We are going to connect our corporate network to another company's network over dual 20mbs metro ethernet lines for redundancy. I think we should firewall it and route via BGP between our networks. We will treat them like a trusted extranet.
My colleague feels it's enough to firewall and NAT their network and we can use static routes pointing to them and etherchannel both ethernet ports.
Re: Best way to connect to another private network.
Let me put it another way. Why do you think using BGP is a better way to go than simply firewalling the connection. Is there some advantage security wise that you can see or is it simply because you feel this is a more optimal design. Are there routing policies you want to implement between you and your partner that require BGP capabilities ?
Bear in mind from a security perspective static routing is more secure than exchanging routes with an external company. You say they are trusted, how trusted and what resources are they accessing ?
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.