I'm in the process of setting up BGP between 2 ISPs at 2 data centers. From ISP A to data center A, I have 4 T1 lines configured with "ip load-sharing per-packet", from ISP B to data center B I have 1 T1, and I have a /24 assigned to me from ISP B to advertise. Between the 2 data centers I have a point to point T1 line going. My question is: Is it possible to use IP addresses from private class C to assigned to the interfaces that carry the point to point connection between the 2 date centers, then create loopback interfaces on the routers, assign these interfaces with ip addresses from the IP block that I'm advertising, then use "update-source loopback 0" to send routing updates between the two routers at the 2 data center (iBGP). Is it possible also to use an ip address from this IP block to assign to the ethernet interface that's facing with my internal firewall while this ip block is being advertised?
Since I have 4 T1 lines coming from ISP A, they asked to have a loopback interface set up which will be used to connect to their loopback interface on their router, is it still neccessary to set up "ebgp multihop".
We're mostly setting this up as failover, with as-prepending applied on the route out from IPS B, so that data center A will be the primary data center (traffic to this /24 IP space will go to data center A) until it goes offline, then data center B will take over all traffic to this /24.
You can use private IP address for connection between DC-A and DC-B without BGP "update-source lookback" - you do not actually use BGP, if you run your own IGP internally.
It is not a problem to assign the IP block to your Ethernet facing external IF of Firewall.
For 4xT1 load balanceing, you do need "ebgp multihop" command and also "update-source loopback". Your ISP will do the similar configuration as well. static routes(4) with Serial IFs as next hop to your ISP ebgp neighbor will be required too.
For incoming traffic, AS-Prepend should be applied at router facing ISP-B. However, for outgoing traffic, you need to play with IGP metric with higher metric toward router connecting to ISP-B. This can be accomplished by redistribution from BGP to IGP.
Yes, you can use private address between your 2 data-centers and use loopback address too. But if your intention is to exchange only internal traffic between your 2 datacenters, use OSPF (IGP). Use iBGP if you want to provide some external redundancy to both the data-centers.
The use of loopback interface is for security. If you set up a loopback address in your eBGP session, you always have to use the "ebgp multihop". For iBGP session with loopback address, you don't have to use the "ebgp multihop" command. The "ebgp multihop" command is only for eBGP sessions.
The use of "as-prepend" is only for incoming traffic. For outgoing traffic you have to use another attributes from BGP, like local-preference.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...