Re: How to make spoke going to hub to get to the Internet

news2010a · ‎03-24-2011

Hi,

Imagine MPLS network. Total of 4 sites.

HQ-HUB is the only site with access to the Internet.

So if Site1 or Site2 or Site3 need to access the Internet, traffic will have to go through HQ-HUB and from there reach the Internet.

Question:

I have routes 2851's on the spoke sites.

Which command or mechanism you would explore in this case to make the spoke sites point to the HQ-HUB to reach the Internet?

Would you do this based on DNS settings or getting an access-list & static route defining when the spoke routers traffic need to go the internet, point to the HUB-HQ as the default?

Edison Ortiz · ‎03-24-2011

Inject a default route from the Hub site towards the MPLS Cloud.

All spokes will follow the default and once it reaches the Hub site, traffic should follow the internet.

Mahesh Gohil · ‎03-24-2011

Hi,

Just an addition.

It is required to know what protocol you are running with MPLS provider.

If it is static the step is below

> On spoke you need to have static default pointing to wan ip configured at provider end for spoke site

> On MPLS provider site need to have default route pointing toward HUB wan IP and redistribute it in address-family

(To be configured at HUB site) (You need to speak to provider for default route)

If you are running dynamic protocol

> You need to push default from HUB site and provider will pass same default to spoke site.

I request you to discuss the same with provider if you are running static protocol

Regards

Mahesh

milan.kulik · ‎03-25-2011

Hi,

IMHO, the safest way how users should reach the Internet is using a proxy in the HQ.

You don't need to change your routing at all then, the users just need to know the proxy server IP to reach.

BR,

Milan