Hi - I'm working on a design with two different ISP providers. I'm running BGP with the providers and advertising my company owned address block. AS-prepending on one side. That's working fine.
I'm running OSPF in the inside with a Check Point firewall cluster. The two ISP routers are only sending the default route to the firewalls.
router ospf 1
router ospf 1
default-information originate metric 155
Both Routers and the Firewalls are all on the same segment. I can see neighbor relationships, LSA database etc.
I'm expecting that when Router-A (primary) goes down, the route to Router-B comes in. That seems to be working fine. Now when Router-A comes back I'm expecting the firewall to start using the route to Router-A again but its not. Am I miss-interpreting this behavior?
This seems like such a basic design/config - I baffled as to why its not working. Do I need to adjust or tweak DR/BDR or anything of that nature.
PS - I have a TAC case open with Check Point but I just wanted to sanity check this with the group here.
Cisco Champion Radio · S8|E3 The Cisco DNA Center Machine Reasoning Engine
Machine Reasoning is a new category of AI/ML that you will soon hear a lot about. It saves your IT team time by automating complex and tedious networking tasks. It can also...
To participate in this event, please use the button to ask your questions
In this session attendees will receive an introduction to Software Defined-WAN (SD-WAN) and the importance of control connections, and learn how to configure devices usi...
Community Live- May the SD-WAN Force Be With You
(Live event - Tuesday 19th January, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)
This event took place on Tuesday 19th, January 2021 at 10:00hrs PDT
In this session attendees recei...
Cisco DNA Center
What's new in Cisco DNA Center 2.1.2
Cisco DNA Center 2.1.2.x Features and Capabilities
Cisco DNA Center -Intent Based Networki...
A major international airport is looking to build a cutting-edge new terminal, designed to run 24/7 with no interruptions. With the airport always on round the clock, a critical component required to support this is the surveillance infrastructure, which ...