it works well, but in services like FTP, POP or SMTP I got timeout very often or are slow. About 50/50%.
Internal ADSL Dialer0 10M/768
LAN 192.168.0.0 ----- C1802 <
FE0 IP 18.104.22.168 ------- 22.214.171.124 ADSL MODEM with NAT not FW. 8M/512
! no ip source-route !
! ip cef no ip bootp server ip domain name local.cz ip name-server 126.96.36.199 ip name-server 188.8.131.52 ip name-server 184.108.40.206 ip name-server 220.127.116.11 no ipv6 cef ! multilink bundle-name authenticated ! ! !
! ! ip tcp synwait-time 10 track timer interface 5 ! track 123 ip sla 1 reachability delay down 15 up 10 ! track 345 ip sla 2 reachability delay down 15 up 10 !
interface ATM0 no ip address no ip redirects no ip unreachables ip flow ingress no atm ilmi-keepalive ! ! interface ATM0.1 point-to-point description $ES_WAN$ no ip redirects no ip unreachables zone-member security out-zone pvc 8/48 pppoe-client dial-pool-number 1 !
! interface FastEthernet0 description $FW_OUTSIDE$$ETH-WAN$ mtu 1492 ip dhcp client hostname c1802 ip dhcp client route track 345 ip address 18.104.22.168 255.255.255.0 no ip redirects no ip unreachables ip nat outside ip virtual-reassembly zone-member security out-zone duplex auto speed auto !
! interface Vlan1 no ip address bridge-group 1 ! ! interface Dialer0 description $FW_OUTSIDE$ ip address negotiated no ip redirects no ip unreachables ip mtu 1492 ip nat outside ip virtual-reassembly zone-member security out-zone encapsulation ppp dialer pool 1 dialer-group 1 ppp authentication chap pap callin ppp chap hostname ppp chap password 0 ppp pap sent-username password 0 ! ! interface BVI1 description $ES_LAN$$FW_INSIDE$ ip address 192.168.0.10 255.255.255.0 no ip redirects no ip unreachables ip nbar protocol-discovery ip flow ingress ip flow egress ip nat inside ip virtual-reassembly zone-member security in-zone ip tcp adjust-mss 1452 ! !
! ip dns server ip nat inside source route-map IP193 interface Dialer0 overload ip nat inside source route-map IP213 interface FastEthernet0 overload ip route 0.0.0.0 0.0.0.0 Dialer0 track 123 ip route 0.0.0.0 0.0.0.0 22.214.171.124 track 345 !
! ip sla 1 icmp-echo 126.96.36.199 source-interface Dialer0 timeout 1000 threshold 40 frequency 3 ip sla schedule 1 life forever start-time now ip sla 2 icmp-echo 188.8.131.52 source-interface FastEthernet0 timeout 1000 threshold 40 frequency 3 ip sla schedule 2 life forever start-time now
access-list 1 remark CCP_ACL Category=2 access-list 1 permit 192.168.0.0 0.0.0.255 access-list 100 remark CCP_ACL Category=128 access-list 100 permit ip host 255.255.255.255 any access-list 100 permit ip 127.0.0.0 0.255.255.255 any access-list 100 permit ip 184.108.40.206 0.0.0.255 any access-list 101 remark CCP_ACL Category=4 access-list 101 permit ip 192.168.0.0 0.0.0.255 any dialer-list 1 protocol ip permit no cdp run
! ! ! ! route-map IP193 permit 10 match ip address 1 match interface Dialer0 ! route-map IP213 permit 10 match ip address 1 match interface FastEthernet0 !
Re: Load Balancing some services timeout FTP/POP/SMTP
What i would suggest as all the three are TCP based application and need session persistency once they have started or got connected.As you said when you down one of the ADSL connection everything works perfectly fine.
To overcome these type of issue just spilt the lan subnet and divide lan traffic to go from specific connection rather load balancing.
[toc:faq]The ProblemOn traditional switches whenever we have a trunk
interface we use the VLAN tag to demultiplex the VLANs. The switch needs
to determine which MAC Address table to look in for a forwarding
decision. To do this we require the switch to do...
[toc:faq]Introduction:Netdr is a tool available on a RSP720, Sup720 or
Sup32 that allows one to capture packets on the RP or SP inband. The
netdr command can be used to capture both Tx and Rx packets in the
software switching path. This is not a substitut...
IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...