We have two data centers. Both data center have different applications which need internet access. We want to keep both internet circuit active at the same time. This is going to be a Active- Active situation without load balancing.. First Data center (DC1) has highly sensitive applications. Second data center (DC2)applications are not important.
1- We are just trying to make second data center internet circuit a backup for Data Center#1 but do not want to make data center#1 internet circuit backup for data center#2.Can someone please advise scripts/configurations that fits my situation?
2-We want to secure/filter IBGP connection between both data centers. IBGP connection will not be passing through any firewall. Because we have a different group that controls firewalls and we want to fully control BGP. I am trying to get some thoughts that should IBGP connection pass through firewall? We this is a security concern then what options do we have to avoid firewall group involvement? If we cant avoid it what changes will be required on ASA?
Please draw a diagram with all the circuits and IP-addresses you are using for BGP.
Please highlight your critical application on the diagram.
If you need to run BGP session over firewall, then you need special configuration only if you use password command under neighbor statement. In this case on you ASA you need to disable sequence number randomization and allow TCP option 19 for that BGP session (in both ways).
Agile Networking with Cloud-managed IT [Meraki The Future is here] Cisco Meraki The Future Is Here: Agile Networking With Cloud-managed IT Your customer’s employees are in hybrid workstyle from home, the road, and the office and IT teams need t...
1. Smart Licensing
1.1. What is Smart Licensing?
A. Cisco Smart Licensing is a flexible licensing model that provides you with an easier, faster, and more consistent way to purchase and manage software across the Cisco portfolio and across your orga...
Cisco DNA - Cisco SD-WAN: Connect to any cloud, anywhere, securely Cisco offers on-prem and cloud-managed WAN edge solutions to meet these new demands. Connect any user to any application with integrated capabilities for multicloud, security, ...
Join us for this virtual event as cloud providers, integrators, ecosystem technology partners and customers discuss what tomorrow's cloud will be and what you need to know to prepare. Get ready to hear about innovations for faster operations, mult...
Let´s talk about spanning-treeLeave your comment in english and in your own language.------------------------------------------------Vamos falar sobre spanning-tree Deixe seu comentário em inglês e no seu idioma.