There is another way of doing that. We use a product called Link Proof (http://www.radware.com/content/products/link.htm) from radware. It allows multiple ISP's without BGP, load balances traffic both inbound and outbound and works cleanly with about any type of firewall.
Joe Klein -----Original Message----- From: Ben Setnick [mailto:[EMAIL PROTECTED]] Sent: Tuesday, December 11, 2001 10:07 AM To: [EMAIL PROTECTED] Subject: RE: Source-sensitive Routing ... If your router has 2 serial ports there is no need for any other device to do load balancing. There is also no requirement that you run any type of dynamic routing protocol. The router will do per-destination load balancing across 2 equal cost static routes. Please take a look at this page on Cisco's website: How Does Load-Balancing Work? http://www.cisco.com/warp/public/105/46.html How Are Packets Routed for IP over Equal Paths? http://www.cisco.com/warp/public/105/27.html You will not need any additional equipment, and depending on your needs, by doing NAT on the router you may be able to eliminate the proxy server altogether. Ben Setnick -----Original Message----- From: Pradeep Kumar [mailto:[EMAIL PROTECTED]] Sent: Saturday, December 08, 2001 7:48 PM To: Eric Schroeder; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: RE: Source-sensitive Routing ... If I were you Rakesh, I would use a WAN link load balancing in this scenario. Can you spend $800 more for a load balancer. I tried brain storming this with a few collegues and someone suggested to do ospf on both and load balance. Do you have statics to the isp 1, 2 or are u routing ? Eric- can you do lb using BGP ? -Pradeep Kumar -----Original Message----- From: Eric Schroeder [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 06, 2001 10:18 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Source-sensitive Routing ... One way to do this is to use BGP. This load balances ok if you have two Teir 1 providers, but will not load balance otherwise. The advantage is this is the only way to provide uptime if one of the ISPs goes down unless you do NAT on the Cisco 2514. You may have problems running BGP on a 2514, but I think this will work as long as you only get routes to connect hosts from each ISP, and then set the default route to the least used link. Hope this helps. Eric Schroeder [EMAIL PROTECTED] 12/05/2001 09:44 PM To: [EMAIL PROTECTED] cc: Subject: Source-sensitive Routing ... Dear memebers, I have the following network configuration: -------------------------------------------------------- | | | 10.x.x.x | | | -------------------------------------------------------- | | ---------------------- | Dual Homed Gateway | ---------------------- | | --------+------------- | Cisco 2514 Dual LAN | | Router | | | | wan1 wan2 | ---+------------+----- | | | | | | ISP1 | | ISP2 ======================================== + + + INTERNET + + + ======================================== All our clients in the private network address (10.x.x.x). Using the Proxy Server at Dual homed gateway, these clients get connected to Internet using ISP1 link. Recently we have received another link for Internet connection from ISP2. Hence we are planning to route some of the clients of private network address(10.x.x.x) through ISP1 link and the remaining ones through ISP2 link, using Cisco 2514 Dual LAN Router running IOS software 11.0. After reading the Cisco documents, I came to know that this is possible through SOURCE-SENSITIVE routing at the Router. I want to know the followings: 1. Is there any alternative way(s) to achieve this goal using the same router having two WAN interfaces? 2. What are the security issues related to SOURCE-SENSITIVE routing ? Waiting for your suggestions .... Rakesh Kumar ============ -------------------------------------------------
