cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1654
Views
0
Helpful
4
Replies

GLBP and firewall

crazycrok
Level 1
Level 1

Can anyone see any advantage of glbp over hsrp when using a pair of routers dual homed to two ISP's behind a firewall? The firewall would have the glbp IP as it's default gateway.

Looking at the load balancing modes on offer, I can't see that this would work correctly with just one host (the firewall) making use of the glbp gateway.

I would like to share the gateways and load balance the outbound traffic to the two upstream ISPs'.

Thanks,

Matt

4 Replies 4

a-vazquez
Level 6
Level 6

Hello,

This really doesn't clear the issue up. GLBP is presented as something that enables multiple hosts to be load-balanced between two or more different routers.

When you have all of those hosts going through a firewall...and that then is connected to two different routers.....the Cisco examples are broken. In this case, you have only one host going to the default gateway.

The question now becomes, Can the Active Virtual Gateway then load balance from one single host. I didn't see that happening using Cisco's documentation. Do you know for a fact that the pix, which in essence becomes a single host for the entire network is load balanced?

Thanks,

Jim Cornelson

george
Level 1
Level 1

Hi Matt,

I am looking to the same setup. Did you manage to setup GLBP with a firewall behind?Can u please provide your GLBP config?

Regards,

George G

dgahm
Level 8
Level 8

You are correct. If you only have one device (your firewall) all traffic will just use one router or the other. The firewall can only have one mac address in the ARP cache for the default gateway, so will use one router until the next ARP.

If you want to load balance in this scenario you need to use a routing protocol, or static routes.

Review Cisco Networking for a $25 gift card