Redundancy between two gateway switches

parekhu136 · ‎01-24-2025

We have two Layer 3 switches with BGP running over two ISP connections. My boss wants HA between the two Layer 3 gateway switches, so I planned to configure VRRP on both.

However, I’m stuck because the gateway Layer 3 switches are connected to the LAN-side firewall with public IPs, and the Layer 3 switch interfaces also have public IPs assigned. My boss isn’t providing 2-3 additional public IPs for VRRP as it's costly.

We also have two VLANs configured on the switches.

How can I achieve redundancy in case one Layer 3 gateway switch fails, without needing extra public IPs?we dont want to run routing protocol between two layer 3 switches..

paul driver · ‎01-26-2025

Hello
your topology isn’t to clear can you post a diagram for review ?

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

liviu.gheorghe · ‎01-26-2025

What kind of switches are you using? If you are using 9300 or 9300X series you can stack multiple switches using dedicated cables and have the stack behave as a single switch. Stacking cables usually come by default with the switch or can be ordered separately. The part numbers are STACK-T1-50CM=, STACK-T1-1M= or STACK-T1-3M= for lengths of 50 cm, 1 m and 3 meters.

If you are using 9400/9500/9600 series switches, you can use the StackWise technology to achieve the same thing - a stack of switches behaving as a single switch.

In this way you have the redundancy and HA, but don't need to worry about additional public IP addresses for VRRP. Also the stacking technology is superior in benefits over any gateway redundancy protocol like VRRP, HSRP or GLBP.

HTH

Regards, LG
*** Please Rate All Helpful Responses ***