My company has two primary sites with separate internet connections. Currently we are running eigrp internally with separate default routes and ISP connections to the internet. I would like to propose we run BGP to advertise all public IP address assigned to us as a single AS out both locations. We are both running dual 6513 with FWSM at the core with edge routes connecting us to the internet. I would like to pass all BGP routes to each core to ensure internet failover. I also have a partner company who wants me to redistribute a private /18 network from my EIGRP to BGP. Can one of you cisco wizards give me some high level direction to make this work and keep it reasonably easy to maintain and troubleshoot?
To achieve the BGP redundancy/failover in the dual ISP homing scenario you should have you own block of public IP address range with an AS number. You can use the BGP attributes such as AS_Path and Local_Pref to use one link for outgoing traffic and another ISP link for incoming traffic. Local_prefrence will be use to manipulate the outgoing traffic and AS_Path will factor the traffic which is coming into your AS. You can use ASPATH filterlist to allow the locally originated routes within your AS to be advertised only to the ISP'S i.e you dont want to become a transit AS for both the ISP's.
You cannot have your private network address space to be advertised to the outside world using BGP. This is not allowed. All the ISP's filter the private address space range in their network.
Please see the links below and it should help you undersatnding the designing the network:
What about the failover occuring at the core of my network. Is passing all bgp routes from the edge to the core the only solution for internet failover? If I just pass the 0.0 route will internet failover work? Does Cisco have any recommendations on passing BGP into the core 6500 series
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...