Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3067
Views
0
Helpful
5
Replies

ASR 1000 Multiple ISP Load Balancing

JohnTylerPearce
Level 7
Level 7

‎11-22-2012 08:27 AM - edited ‎03-04-2019 06:13 PM

I came up with a few ideas to Load Balance based on multiple ISPs. In our network setup we have a distribution layer of 3750s going to an

ASR 1000 Series Router, which goes out to multiple ISPs, ISP1 and ISP2.

So let's say we also have a virtual fortinet appliance behind the 3750. If I say all traffic going to 0 - 126 goto ISP1, and 128 - 254 goto ISP2,

and then obviously whatever NATd IP the customer has (ISP1 or ISP2), the return traffic will have to go to that specific IP. The traffic will all

go back to the virtual fortinet on the same interface, so I would assume I would be safe with uPF.

I don't know of any ways to load balance based on Link Optimization, without implementing a load balancer, unless anyone has any other ideas.

I was just trying to find the best way to do a 50/50 split, which I know may not always be the case.

I just dont' want to pay for two 100Mbps links and only use one, seems like a waste of money.

Labels:
0 Helpful
5 Replies 5

shillings
Level 4
Level 4

‎11-22-2012 01:08 PM

Are you contemplating this because you haven't got any Provider Independent addressing?

0 Helpful

JohnTylerPearce
Level 7
Level 7
In response to shillings

‎11-22-2012 03:21 PM

Yes sir.

0 Helpful

shillings
Level 4
Level 4
In response to JohnTylerPearce

‎11-23-2012 12:30 AM

Why not pursue PI addressing then? If you're ever going to do it with IPv4 then now is possibly your last chance. I'm in Europe where the RIR (RIPE NCC) has announced on their website that IPv4 PI addressing is no longer available due to the global address shortage. However, two carriers have assured me they can still get some. That's if they are paid to manage the application of course.

0 Helpful

Sudeep Valengattil
Cisco Employee
Cisco Employee

‎11-22-2012 07:07 PM

Hi John,

You can aply a route-map on ASR ingress interface.  Based the source address, you can set the next-hop to either ISP1 or ISP2. 

This 0-126 and 128-254, is ths the public to which the Internal IPs are getting NATed? Can u pls confirm?  Also confirm where do u apply the NAT

Sudeep

0 Helpful

JohnTylerPearce
Level 7
Level 7
In response to Sudeep Valengattil

‎11-22-2012 07:30 PM

Well, I was pondering on seting a route to 0.0.0.0 to 126.255.255.255 out ISP1, 128.0.0.0 254.255.255.255 out ISP2.

But, when I come to think of it, I would have to edit out certain routes pointed to inside our network from one of the ISPs.

NAT is perforemd by the virtual fortinet

Virtual Fortinet -> 3750 -> ASR -> ISP1|ISP2

Just trying to figure out the best way to load balance, since I don't have Provider Independent Addresses.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card