but how to automatically swap back to router 1 if the bgp session in router 1 restore?

As I mentioned above, you can create another EEM applet that check syslog of peer up not down like the above and it go to config mode same as above and increase the priority to 110 for example

Sent from Cisco Technical Support iPhone App

the EEM seems like not working, while i shutdown the bgp session, i didn't see any log show EEM is kick in? We have enable password in the router, and is the EEM working without people interactive router?

this is can be done even with password, you can search the Network management for  a lot of EEM with BGP configs and you can post your recruitments there if you like EEM example for your case

the solution suggested by Edison, will give you automated failover as well, and there is no impact if you have enough bandwidth in the link that inter connect your BGP routers

HTH

EEM seems working after i double the logginh:

%HA_EM-2-LOG: BGP_down: EBGP Session to peer is down

%HA_EM-2-LOG: BGP_up: EBGP Session to peer is up

but how i can sure that EEM will running without people login into router and without the enable password (or should i add the enable password in action)?

i do not think you need the enable password, otherwise you wouldnt see it working if th eapplet couldnt login

you can test it in you router or a quick lab

please rate the helpful posts in this discussion

HTH

that could be due to i already logging in the router, still logging after i shutdown the interface for testing via console.

EEM uses vty and even if you loged in it uses diffrent session anyway

- log out from the router drop the bgp session then login and check which router is the HSRP active, give it a time so that the sssions gose down and bgp send the log msg

HTH

but we wanted the traffic to Internet always go to ISP A which is using r1, if i configure ibgp between 2 routers will have any impact?

if you run iBGP between the 2 routers, make sure your primary Internet router has local preference higher than 100 (default) and prepend AS outbound to the eBGP neighbor on the secondary, making this path less preferred.

This means that in non failure scenario your primary router routes all traffic, and if the primary link fails, will advertise these same routes using iBGP.

No worries

As stated, you can use the BGP metrics to alter to traffic engineer your flows.

If you want R1 to be the primary exit router, then apply a local-preference of 200 on incoming flows - for instance:

route-map local-pref permit 10

set local-preference 200

router bgp x

neighbor x.x.x.x route-map local-pref in

For traffic entering your network, you can use as-path prepend on R2:

route-map as-path permit 10

set as-path prepend x x

router bgp x

neighbor x.x.x.x route-map as-path out

Regards,

Edison