Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
414
Views
0
Helpful
4
Replies

Object Tracking Help

bowser
Level 1
Level 1

‎02-08-2005 04:56 PM - edited ‎03-02-2019 09:33 PM

Hi,

I'm looking at setting up object tracking as a failover for our frame relay link from Uk to US and would like some advice. We have 2 x 2500 series routers handling this circuit as well as 2 x 515e PIX's acting as our internet gateway. I basically want the PIX's IPSec tunnel to act as a link between the two office's in the event of the dedicated link going down.

Can anyone tell me if I'm on the right path with this config below? Normally traffic for the remote 192.168.52.0 network would be routed through 192.168.57.253. As a failover the PIX's address is 192.168.0.1.

This is the proposed config of my 2500 router.

interface serial0/0

description primary_link

ip address 192.168.57.254 255.255.255.252

rtr 1

type echo protocol ipIcmpEcho 192.168.57.253

timeout 1000

frequency 3

threshold 2

rtr schedule 1 life forever start-time now

track 123 rtr 1 reachability

access list 101 permit icmp any host 192.168.57.253 echo

route map NY2UK permit 10

match ip address 101

set ip next-hop 192.168.57.253

set interface null 0

!

ip local policy route-map NY2UK

ip route 192.168.52.0 255.255.255.0 192.168.57.253 track 123

ip route 192.168.52.0 255.255.255.0 192.168.0.1 254

Any help would be appreciated :)

Labels:
0 Helpful
4 Replies 4

vcjones
Level 5
Level 5

‎02-08-2005 06:20 PM

Why are you trying such a complex solution? Why not just turn on a routing protocol over the primary link with a floating static pointing to the IPsec tunnel?

Or make it even simpler (if running a less than antique IOS release) and use frame-relay end-to-end keepalives and a floating static route? Save the ping-based routing for situations where the other end of the link is not willing to cooperate with you.

Good luck and have fun!

Vincent C Jones

www.networkingunlimited.com

0 Helpful

bowser
Level 1
Level 1
In response to vcjones

‎02-09-2005 04:58 AM

thanks for the advice

Which routing protocol do you think would be most suitable in this case? I was leaning towards EIGRP.

0 Helpful

vcjones
Level 5
Level 5
In response to bowser

‎02-09-2005 05:50 AM

No technical preference, so go with whatever you are most comfortable with. EIGRP is easiest if both ends are Cisco. OSPF or RIP would also work fine, although you would probably want to adjust the timers on RIP to minimize recovery delays.

Good luck and have fun!

Vincent C Jones

www.networkingunlimited.com

0 Helpful

bowser
Level 1
Level 1
In response to vcjones

‎02-11-2005 04:56 AM

Since I have never implemented EIGRP before (i'm obvoisly a newbie :) i've been investigating the simplest approach. Can anyone confirm that I'm on the right track?

London router (192.168.57.254):

1)Router(config)# router eigrp 10 ---- (enable eigrp)

2)Router(config-router)# network 192.168.57.0 255.255.255.252 ---- (associate with wan)

--------

(setup routes - including floating static)

R1(config)#ip route 192.168.57.0 255.255.255.252 Serial0/1 192.168.57.253

R1(config)#ip route 192.168.57.0 255.255.255.252 192.168.0.1 250

(point route to PIX if direct circuit over serial 1 interface fails)

Is the addition to the route of the serial 1 interface neccessary? I was under the impression the router will attempt to access the 57.0 network over the ethernet interface in the event of failure otherwise. So in effect the network would never actually be deterined as failing..

Also, is there any other EIGRP routing table config required or will it determine the routes correctly through the floating static above?

0 Helpful
Customers Also Viewed These Support Documents