Informasi travel dan wisata Referensi anda dalam berwisata

14Jun/090

Cisco policy based nat multihoming isp without bgp

Punya 2 koneksi internet dan ingin membaginya sesuai jenis traffik atau IP Addressnya ? solusi Policy Based Nat bisa mengatasinya ..

cisco policy based nat multihoming isp without bgp

If you have 2 connection, how configure to adopt multi link failover ? Here I give the example how to configure it on Cisco 1841 Router.

This configuration topology here consists of two vlan users :
1. VLAN Bos 192.168.0.0/24 primarily connect to ISP A but when connection to ISP A is lost the traffic will be reroute through ISP B.
2. VLAN Staff, daily connection is through ISP B and never going through ISP A.

Because the users VLAN is behind of ASA firewall, so the VLAN Bos will be translated using outside interface of firewall, and VLAN Staff will be translated to 172.16.100.5
Here I am not explain how is the configuration of firewall, insted of focusing on how routing on the router works.
Here is the configuration :

*********************************
track 123 ip sla 1 reachability
!
track 124 ip sla 2 reachability
!
interface FastEthernet0/0
ip address 202.1.2.2 255.255.255.240
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 192.168.2.1 255.255.255.0
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
!
interface FastEthernet0/1/0
ip address 172.16.100.2 255.255.255.0
ip nat inside
ip virtual-reassembly
ip policy route-map dual-isp
duplex auto
speed auto
!
ip route 0.0.0.0 0.0.0.0 202.1.2.1
!
ip nat inside source list adsluser interface FastEthernet0/1 overload
ip nat inside source route-map policy-based-nat interface FastEthernet0/0 overload
ip nat inside source route-map policy-based-nat2 interface FastEthernet0/1 overload
!
access-list extended Dedicated_Internet_user
permit ip host 172.16.100.1 any
ip access-list extended adsluser
permit ip host 172.16.100.5 any
!
ip sla 1
icmp-echo 202.1.2.1source-ip 202.1.2.2
ip sla schedule 1 life forever start-time now
ip sla 2
icmp-echo 192.168.2.99
ip sla schedule 2 life forever start-time now
route-map policy-based-nat permit 10
match ip address Dedicated_Internet_user
match interface FastEthernet0/0
!
route-map policy-based-nat2 permit 10
match ip address Dedicated_Internet_user
set ip next-hop interface FastEthernet0/1
!
route-map dual-isp permit 10
match ip address Dedicated_Internet_user
set ip next-hop verify-availability 202.1.2.1 10 track 123
set ip next-hop verify-availability 192.168.2.99 20 track 124
!
route-map dual-isp permit 20
match ip address adsluser
set ip default next-hop 192.168.2.99
!

Related posts:

  1. Cisco EIGRP variance load balancing
Filed under: CCIE Leave a comment
Comments (0) Trackbacks (1)

Leave a comment


Info jalan jalan : Cisco policy based nat multihoming isp without bgpBlogger Kutho Magetan | Blogger Kutho Magetan
» «

Informasi Travel dan Wisata

↑ Grab this Headline Animator

Share|

Recent Posts

Recent Comments

Web Site Hit Counter
Web Site Hit Counters

Page Rank

Page Rank Check

Categories

Archieves

Tags

angka asem bahasa bandung Banjarmasin beach belajar bogor cibubur cisco eigrp foto fotografi genting highland german GPS Jakarta jerman kapal keajaiban dunia Kuala Lumpur Kuliner lady of the sea language learning load balancing losari makasar night number oregon pantai papua petronas princess sate Semarang Singapore song of the sea stasiun sunset tiket twin tower variance wisata