Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
447
Views
0
Helpful
2
Replies

Questions about ospf topology

tigerxxx1
Level 1
Level 1

‎11-26-2013 05:05 AM - edited ‎03-04-2019 09:41 PM

Hi,

i'm not so familiar with dynamic routing and ospf.

I have two IPVPN Cisco routers, those routers have tunnels to many remote sites.
the main routers have ospf enabled.
they have ospf area via each remote site. the routers work in active/active mode.
they also have area 0 - BB against the BB Switch inside.
so today the BB Switch is getting updates to which router it should pass the packet to each network through R1 or R2.

now, i want to remove the OSPF from the BB switch and replace it with Checkpoint FW without OSPF.
i want to configure 2 hsrp on routers(R1 primary on hsrp1, R2 primary on hsrp2), and to configure the FW to send traffic through the routers with either active/passive between the routers (send always to R1, and if failes send to R2) or load balancing between two hsrp addresses.

I have two questions:
1. if both routers have routes through ospf to network X, if I send the packet from the FW to R1, will always R1 send the packet forward or it will send some packets to R2 to process based on costs etc..? (will be load balancing between routers on packets coming from routers to remote sites or I have to make the load balancing from the FW level ?)

2. if indeed the router who gets the packet from fw is the same who forwards it to remote site(if it's wrong, correct me), and lets say I do load balancing from FW to routers, so when R1 get packet from fw, it forwards the packet to remote site5, now the return packet from remote site5 can choose R2 to send the packet through because it has maybe better cost(right?). which cause some assymetric route (same session goes through r1 and comes back through r2).. does that normal and optimal with dynamic routing and ospf? or it will cause problems or slower traffic, etc..

Thanks a lot!!


Labels:
Preview file
13 KB
0 Helpful
2 Replies 2

Jon Marshall
Hall of Fame
Hall of Fame

‎11-26-2013 08:06 AM

Amir

1) You can only tell this by looking at the routing table. If both R1 and R2 are receiving the same routes from the WAN and they are peering with each other then they should each send any packets to remote destinations direct onto the WAN because the cost of going via the other router will be higher.

2) Yes you could well get asymmetric routing ie. traffic goes out via R1 and comes in via R2. Generally speaking asymmetric routing in redundant networks is quite common because routing protocols only consider the next hop. If you have devices that keep track of the connection in the path then this can cause a problem. Firewalls are one of the main considerations in this respect. But your firewall is behind the routers so it is not a concern for you.

Jon

0 Helpful

tigerxxx1
Level 1
Level 1
In response to Jon Marshall

‎11-26-2013 11:03 PM

Thanks a lot!

it was very helpful.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card