Re: HSRP configuration

KR SHAH · ‎05-29-2019

Hi,

We need to design network with High availability of router by configuring HSRP. Our scenario is like that there are TWO different ISP configured on router & One APNIC IP configured which connected to firewall. In firewall we configured VIP(NAT) to our webserver.

Is is it possible to configure HSRP in such scenario or is there any other way to achieve High availability.

For reference attached diagram.

omz · ‎05-29-2019

Is that 1 Cisco router or 2?

To my understanding .. HSRP is run between 2 routers to provide HA in case of a device failure.

If the Cisco router is multihomed (When you connect your network to two different Internet service providers (ISPs), it is called multihoming.) .. depending on how the router is connecting to the ISPs .. you can play with floating static routes or BGP to provide redundancy.

Giuseppe Larosa · ‎05-29-2019

Hello KR SHAH,

to build an high availabilty as noted by omc79 you would need two routers and you would move the second ISP connection to the second router.

If you have eBGP connections you may consider adding an iBGP connection between the two border routers.

With two routers HSRP can be used to provide an alway on next hop for the firewall outside interface. But be aware that HSRP uses one IP address for the VIP and also the second router needs an IP in the same subnet.

And you say that you are using public IP addresses there (NAT is performed in the firewall).

With only one router HSRP does not provide any benefit.

Hope to help

Giuseppe