Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Community Helping Community

259
Views
0
Helpful
1
Replies
Highlighted
Crag Muer
Crag Muer Beginner
Beginner
‎06-17-2013 02:00 AM
‎06-17-2013 02:00 AM

Can you verify my IP SLA config?

I am going live soon with a new failover configuration utilizing IP SLA monitoring.  I have tested my configuration as best I could in GNS3 and was hoping someone could take a quick look at what I've done before I go live.  Any help is greatly appreciated!  Here is a brief overview:

  • 3 remote locations connected over Verizon EVPL circuits
  • Each office has it's own internet connection behind an ASA 5510
  • Each ASA has a VPN tunnel pointing to each other
  • I verified that the other router configs mirror each other, save for the addressing
  • Full router configs are attached to the post in case anyone wants to see them

ip sla monitor 1

  type echo protocol ipIcmpEcho 172.20.254.2 source-interface FastEthernet1/0.1741 (EVPL interface to Office #2)

  timeout 2000

  frequency 5

ip sla monitor schedule 1 life forever start-time now

ip sla monitor 2

  type echo protocol ipIcmpEcho 172.20.254.3 source-interface FastEthernet1/0.1741 (EVPL interface to Office #3)

  timeout 2000

  frequency 5

ip sla monitor schedule 2 life forever start-time now

track 1 rtr 1 reachability

track 2 rtr 2 reachability

ip route 192.168.1.0 255.255.255.0 172.20.254.2 track 1 (route to office #2)

ip route 192.168.5.0 255.255.255.0 172.20.254.3 track 2 (route to office #3)

ip route 0.0.0.0 0.0.0.0 192.168.0.2 20 (route to local ASA with backup VPN connections)

Labels:
Everyone's tags (5)
15362391-router2.txt.zip
15362390-router3.txt.zip
15362392-router1.txt.zip
0 Helpful
Reply
1 REPLY 1
Zeeshan Siddiqui
Zeeshan Siddiqui Beginner
Beginner
‎06-17-2013 08:31 AM
‎06-17-2013 08:31 AM

Can you verify my IP SLA config?

Hi Crag,

1> ITs best try using a loopback address as your source

type echo protocol ipIcmpEcho 172.20.254.2 source-interface FastEthernet1/0.1741

2> An Icmp ping will be sent every 5 seconds if it fails your route will disappear and can happen a number of times if there is congestion.

frequency 5

track 1 rtr 1 reachability

delay down 7    (If the ping fails twice then your route dis-appears)

or

track 1 rtr 1 reachability

delay down 12  (If the ping fails three times then your route dis-appears)

I have not gone through in detail through the configs  (IS there any specfic section you are worried about ?)

The above two would help.

Pls rate the post if help full


0 Helpful
Reply
Latest Contents
Cisco ASA failover status, Sensor for PRTG
Created by Oleg Volkov on 01-17-2020 10:10 AM
0
5
0
5
Hello!We update our ASA Failover sensor for PRTG.Improve usability.New manuals.You can read about it in attachment file.Download sensor from: http://www.powerc.ru/download/asafailover.zip
network issue
Created by abandoumo on 01-16-2020 09:08 AM
4
0
4
0
good morning I have this report from users, saying that they encounter connection issue only when they are wired , but the wireless I fine. both connection are using the same path to the internet ...please advised a troubleshooting plan.
16.12.3 Beta Release for Catalyst Switches
Created by okumar on 01-16-2020 08:30 AM
0
0
0
0
  Enterprise Switching Business Unit is glad to announce Beta release 16.12.3 for all Catalyst 9200/9300/9400/9500/9600. This release is made available to allow users to test, evaluate and share feedback before General Avail... view more
CDP/LLDP neighbors via SNMP, VLANs data and hosts on ports -...
Created by Oleg Volkov on 01-15-2020 11:16 AM
0
5
0
5
Hello.I make tools for gt CDP/LLDP data? VLANs/SVI and connected hosts (MAC/IP/Vendor).Work rfom windows.Can be exported to xml/json filedownload from: http://www.powerc.ru/download/PowerTOOLS.msi (for Windows).If You have questions please contact wi... view more
EHWIC-4G-LTE-G upgrade software
Created by m.x on 01-13-2020 04:36 AM
3
0
3
0
Hi there, I'm looking to upgrade the EHWIC-4G-LTE-G SKU MC7710 but i cant find the right firmware, or do I? I feel like I'm running arround in circles:Here I find the upgrade link: Cisco Firmware Upgrade Guide for Cellular Modems:  htt... view more
CreatePlease to create content
Discussion
Blog
Document
Video
Content for Community-Ad