04-03-2022 05:39 AM
Hi Guys
I have two edge routers with public IPs suppose it R1(1.1.1.1),R2(2.2.2.2)
and i need to map my local server SRV(192.168.1.200) to both ISPs.
the required: if R1 (intG0/0/0) goes down the R2 take place and serve the request.
Solved! Go to Solution.
04-04-2022 01:44 AM - last edited on 04-04-2022 05:44 PM by Translator
Hello
I assume you would require failover not only for static NAT but for dynamic PAT as well?
If so you would also require stateful hsrp failover and depending on what software your rtrs are running would also depend on what nat resiliency feature is applicable to you.
Im mentioning this through past experience as I got burned on this some time back, having implemented stateful nat then never giving it a thought it would be depreciated on a rtr upgrade, but it was and it caused me no end of trouble, service outage etc…!
Static nat hsrp
Stateful nat hsrp
Box -to-Box NAT (B2B wan lan (successor to static/stateful hsrp)
If you can confirm the above then we should be able to provide you with a viable working solution
04-04-2022 03:00 AM - edited 04-04-2022 03:18 AM
This a DNS issue not a NAT issue.
If you are using different public IPs for the same server on different routers then you need some way for DNS to work out that the first IP is not working and start responding with the other IP.
This is not a straightforward thing to do and it usually involves some sort of load balancer being placed in front of the web servers and using a VIP.
Jon
04-03-2022 05:55 AM
04-03-2022 05:58 AM - edited 04-03-2022 05:59 AM
Hi
There are some solution for that kind of scenario. The simplest is use HSRP between routers. HSRP provides you an VIP IP to where you are going to point your server. This VIP will be the gateway of your local network and if one router fail, the second will assume the VIP.
Your topology will look like this:
R1 R2
Switch
Server
04-03-2022 03:16 PM - last edited on 04-04-2022 05:42 PM by Translator
I already made HSRP for outbound traffic and everything's okay, but for inbound traffic from Internet to local server
request will face two ISP , how he know which routers are active?
R1: ip nat inside source static [Local-SRV-IP] [EXternal-ISP-1]
R2: ip nat inside source static [Local-SRV-IP] [EXternal-ISP-2]
LOCAL >> R1 >> ISP-1...… internet
LOCAL>> R2 >> ISP-2 … internet
04-03-2022 10:07 AM
You can do NAT with the public to Private IP there is no issue here. but we need to look more into it.
how are external people accessed by IP address or DNS ?
If you looking for failover, then you need to look also out going path for failover right?
04-03-2022 03:08 PM
Thank you bro
I need to use DNS, as I understand I need to request three public IP's and make HSRP for the external interfaces.
04-03-2022 03:23 PM - last edited on 04-04-2022 05:43 PM by Translator
04-03-2022 04:13 PM - last edited on 04-04-2022 05:47 PM by Translator
I really appreciate your kind response, but i think you misunderstand the requirement.
is it allowed to map local server through two different public IP's
example www.google.com with public IP: 1.2.3.4 and 5.6.7.8,
if the first IP died the second IP will serve the request.
this tracking behavior for ISP1 and ISP2 can be done with DNS server?
04-04-2022 03:00 AM - edited 04-04-2022 03:18 AM
This a DNS issue not a NAT issue.
If you are using different public IPs for the same server on different routers then you need some way for DNS to work out that the first IP is not working and start responding with the other IP.
This is not a straightforward thing to do and it usually involves some sort of load balancer being placed in front of the web servers and using a VIP.
Jon
04-04-2022 01:44 AM - last edited on 04-04-2022 05:44 PM by Translator
Hello
I assume you would require failover not only for static NAT but for dynamic PAT as well?
If so you would also require stateful hsrp failover and depending on what software your rtrs are running would also depend on what nat resiliency feature is applicable to you.
Im mentioning this through past experience as I got burned on this some time back, having implemented stateful nat then never giving it a thought it would be depreciated on a rtr upgrade, but it was and it caused me no end of trouble, service outage etc…!
Static nat hsrp
Stateful nat hsrp
Box -to-Box NAT (B2B wan lan (successor to static/stateful hsrp)
If you can confirm the above then we should be able to provide you with a viable working solution
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide