Hi all,
Currently the majority of our larger sites are outfitted with two 2921 ISRs running HSRP, and a Layer 3 core switch that does a 10.0.0.0/8 route out to the VIP of the routers (and a default route to ASA). These routers each have a single MPLS connection. This was all setup by our MSP, and at the time we were still running legacy Avaya core switches in most places. Because of this, our MSP preferred not to do any dynamic routing on the switch side. Pretty soon I'll be deploying all new switches to one of these sites. The core is going to be a stack of 3850-24XS switches with IP services. My goal, and what I'm currently attempting to set up in lab, is to eliminate the use of HSRP for failover between the MPLS links. I've heard and read elsewhere that failover can be done much more gracefully by simply using routing protocols. As it exists currently, each MPLS router is learning routes via BGP. In lab, I configured two 3925's that we had on hand with each a DMVPN tunnel (closest thing I could get to MPLS in a lab setup), and redistributed the routes learned from BGP into an EIGRP process. This EIGRP process is also running on the core 3850 switch. All routes are being learned properly and I can ping across the WAN from the core as would be expected. The issue I'm running into is when trying failover. In order to simulate a loss of service, I'm removing the access vlan on the switchport that labrouter1 is connected to upstream (a guest internet port). After literal minutes, the BGP session finally times out, and traffic moves to Router2/DMVPNtunnel2. Everything appears to work okay when actually shutting the port, but it's of course very rare that a sudden outage would constant a link-down between the PE MPLS router and our MPLS router. From what I can tell I probably need to have our MSP lower the BGP hold time so that when the MPLS circuit is lost the table will clear faster and force traffic over the secondary MPLS, but I'm not entirely sure.
This was all spawned when one of my older, better-seasoned coworkers suggested that it would be a much cleaner set up to run it this way rather than relying on HSRP and SLAs. Me, I'm just a novice with a few years of experience with this so I may be completely out in left field, but if anyone would happen to have any advice for me with this build, please let me know. At the very least, my more attainable goal is to implement EIGRP so that I don't have to put static routes everywhere everytime I add a network to a site. Even if I have to maintain HSRP for the failover, I at least want to clean this up a bit from its current state. Let me know if I should post sanitized configs for a better visual.
Sorry if this seems like an elementary problem lol
Thanks!
