Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
511
Views
0
Helpful
3
Replies

IP SLA with one outgoing interface

JATINDER KUMAR
Level 1
Level 1

‎02-11-2016 11:55 AM - edited ‎03-05-2019 03:19 AM

friends i have a scenario where my client has two ISPs connected

So LAN is like 10.10.21.0/24  LAN GATEWAY 10.10.21.254

WAN Gateway 1 : 10.10.21.5  ISP A  - ISP provided 800 Series router

WAN Gateway 1 : 10.10.21.7  ISP B - ISP provided 800 Series router

I have a third router 1841 which has 10.10.21.254 configured and sends all traffic to .5 as of now using a default route. Sitting on this router i can ping .5 & .7  as these interfaces and .254 goes to same switch. (please check attached topology)

I was studying about IP SLA to give ISP redundancy but i see i need two outgoing interfaces but in my case i have only one. .254 So any idea how i can achieve ISP redundancy.

Labels:
Preview file
1935 KB
0 Helpful
3 Replies 3

Jon Marshall
Hall of Fame
Hall of Fame

‎02-11-2016 12:08 PM

You should still be able to use IP SLA on the 1841.

You can ping an IP on the internet but you need to make sure that the ping can only be sent via the active router.

So on the 1841 you could either -

1) use a static route for the IP on the internet with the next hop of 10.10.21.5 and make that a permanent route with the "permanent" keyword

or

2) use PBR on the 1841 to force traffic to the internet IP to use next hop IP of 10.10.21.5

what you are basically doing is making sure if the IP SLA fails then the ping being sent is not then successful via the other link or it will just switch back and forth between the two routers.

Obviously the IP you pick for your IP SLA test should not be an IP your users try to access.

Alternatively you could use an IP within the ISP network.

Jon

0 Helpful

JATINDER KUMAR
Level 1
Level 1
In response to Jon Marshall

‎02-11-2016 12:28 PM

hi jon. thanks for the quick reply.

can you help me more with the clarification on above.

say i would ping 8.8.8.8 now first thing is you asked me to configure a static (Default i believe) to send all traffic to .5 using permanent...

so is the config looks like below

#ip route 0.0.0.0 0.0.0.0 10.10.21.5 permanent

#ip route 0.0.0.0 0.0.0.0 10.10.21.7 10                     <10 for manual metric, not sure if this is required>

# IP-SLA configuration to ping to 8.8.8.8 <i am not sure on this config, if you have this or you can provide me, else i can do some digging>

so above makes sense or i am missing something.

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame
In response to JATINDER KUMAR

‎02-11-2016 01:56 PM

The default route is not the permanent route.

It is the route to the internet IP you are using for your IP SLA and you need to test the permanent keyword because sometimes it does not work and then you need PBR.

The issue is this -

your router pings x.x.x.x on the internet and if the pings fails it uses your other default route

But if the router can ping x.x.x.x via the backup link then it tries to go back to the primary router even though it's link is still down.

So you need to make sure the ping always goes to the primary router.

You need the AD of 10 or whatever otherwise both routes are used and you only want the other route to be used if the main link goes down.

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card