[nsp] Multihoming with Two ISP without BGP
Chintan Shah
chintanshah.j at ddsl.net
Wed May 19 01:42:04 EDT 2004
Dear All,
My Customer is having two different link with two different ISP for internet connectivity. Customer is having two different department one is Manufaturing and one software and he wants to keep dedicated line for Manufature department with ISP1 and Software department with ISP 2. He is having Different IP block from ISP1 and ISP2.
Lex say ISP 1 - a.b.c.d/28 and from ISP 2 - p.q.r.s/28 block.
He is having one cisco 1700 series router with two WIC card (WAN card) and one Fast Ethernet card. Ethernet card is having multiple IP address each from a.b.c.d//28 and p.q.r.s/28 block so that request from any IP block will come to FastEthernet and then forwarded to WAN card.
To utilize dedicated connection with ISP 1 and ISP 2 for different department as per customer requirement, we have opted to use IP routing policy to define next hop using route-map with IP accesslist so that any request from block a.b.c.d/28 will be forwarded to ISP1 (Seria0) and from p.q.r.s/28 will be forwarded to ISP2 (serial1).
Now, customer wants some redudancy, as if any link goes down , let say ISP1 then Manufature department should not suffer as already second link is working. Now, its require BGP Mulithoming as request for internet from IP which is allocated by ISP1 to be forwarded to ISP2 and for that customer has to do BGP with both provider. But customer does not have AS number and don't want to go with this despite of lots of discussion and still wants redudancy.
So, we agin suggested to do NAT with WAN IP allocated by ISP so that in case of ISP1 link will down , any request with source IP of ISP1 will be NATed through WAN IP of ISP2 and request will forwarded to ISP2 to provide uninteruppted Internet services and Return traffic will automatically come back via the same working link, because that link is the only link servicing that address range.
I hope above our solutions is workable, if you have any comment/suggestion , please most welcome.
But , I want to know that if now customer wants to run any Internet services on his end like Webserver or DNS server then with above solution Of course, this approach won't work if you're providing services to the outside world, as the addresses associated with the failed link will disappear from the Internet.
So what could be solution ,if possible for abvoe scenario.
If any body of you had come across with same kind of scenario , then please let me know the configuration script and suggestion please.
Thanks in advance and seeking number of suggestion for you cisco master guy.
Regards,
chintan shah.
More information about the cisco-nsp
mailing list