Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
232
Views
0
Helpful
1
Replies

What is solution of nat failover with 2 ISPs?

weerapatr
Level 1
Level 1

‎11-04-2006 02:34 AM - edited ‎03-03-2019 02:35 PM

Now I have lease line links to 2 ISPs for internet connection. I separate packets of users by accesslist such as www go to ISP1 and mail or other protocol go to ISP2 . Let's say link go to ISP1 down I need www traffics failover to ISP2 and vice versa.

Problem is acl on nat statement?

If you config about this.

access-l 101 permit tcp any any www -->www traffic to ISP1

access-l 101 permit tcp any any mail --> back up for mail packet to ISP2 down

----------------

access-l 102 permit tcp any any mail -->mail packet to ISP2

access-l 102 permit tcp any any www --> back up for www traffic go to ISP2

ip nat inside source list 101 interface s0 overload

ip nat inside source list 102 interface s1 overload

In this case is links of ISP1 and ISP2 are UP.

when you apply this acl on nat statement then nat will process each statement in order( if I incorrect please correct me) so mail traffics will match in this acl and then nat with ip of ISP1 only.

please advice solution about this

TIA

Labels:
0 Helpful
1 Reply 1

tdrais
Level 7
Level 7

‎11-04-2006 07:14 AM

You best bet is to use routemaps on the nat statements to do this rather than the access lists.

You match the nexthop and use that to select the proper nat. In effect with a interface overload configuration you say use the interface that that traffic is going out of as the nat address for this traffic.

You control which path to select either by policy routing or normal routing.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card