I need to get a fully redundant network setup. We have 2 cisco 1841's and 2 L3 switches (i dont know the model off the top of my head). We also have 2 different ISP connections and 2 different WAN IP addresses. This network is going to be used to host several servers that remote offices will connect to through VPN tunnels. It will also have some users connecting through RDP connections, and hosting exchange.
Right now we have 1 ISP going to each router, then each router goes to one of the switches. The switches have 2 vlans on them, one for a SAN network that is independent of everything else, and the other for all the network traffic. The switches are connected by two LAG ports and allow the network vlan traffic. Setup GLBP on the routers to provide a redundant gateway. My idea going forward was to setup OSPF on the routers and use VTI's for the VPN tunnels. I would also need to configure OSPF on the remote routers, but then i would be able to acheive redundant VPN tunnels.
Here is my issue:
First i had configured GLBP using a weighted load-balancing method. I soon noticed that my RDP sessions would quickly timeout and not reconnect. I would have to use the other external IP address to get back in. Again, that would only stay connected for a short time before kicking me off and making me switch ip addresses. I assumed that the ARP cache on the servers was timing out and sending another ARP request witch was returning a different virtual MAC address (in this case the other router) so the RDP session was being sent to the other router.
I decided to swithc the load-balancing method to host dependent. This allowed my RDP sessions to stay connected, but i could only connect using one of the external IP address. I would imagine thats because when the incoming packets come in on the "wrong" router, the server sends its RDP replys to its gateway (or active forwarder), and that active forwarder is a different router then the packets came in on. So one of the external IP's allows RDP's to some servers, and the other allows RDP's to the other server.
Is there a way to get things setup so traffic can come in on ether router (ether external IP address), and that traffic can find its way back out the ISP it came from (if nessicary like with a RDP session)? I used GLBP over HSRP and VRRP because i was hoping it would allow this traffic in on ether ISP, I didnt even thing that session traffic would still not work because it might get sent back out the wrong router.
Cisco Champion Radio · S7|E45 Network Insights with AI Endpoint Analytics
Identifying who and what is on the network is a challenge for many organizations. Incomplete visibility makes it difficult to implement advanced security policies and recommendatio...
HI, In the attached diagram from cisco site if we assume R101 and R102 are two DC having a layer 2 link and both are advertising same subnet (eg. 192.168.12.0/24) to the ISP i understand by using BGP metrics we can make one DC primary and other as se...
Question I am having trouble pulling DHCP from a given network. I am fairly new at DHCP servers and I am trying to understand how IP addresses work within these servers. The objective is to give DHCP to my 6 PC's on my main network. I can either...
Hello, I was doing a packet tracer lab. Everything was fine, working, then suddenly it freezed. I closed the window. Now everytime I open this file, it freezes. I uninstalled it and reinstall, still the same. Tried with an older version, keeps crashi...
Can someone share me the test cases related to SDA after migrating the site from traditional network to SDA network. what test point should be considered/tested after the migrating on SDA network. Please share the test case point.