This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Redundant BGP Address and primary external interface.

Hello Everyone!

I have a set of redundant SG310s,

I have 2 uplinks to 2 different carriers with a /24 advertised via BGP.

I have a subnet setup for DMZ to use these IPs for my phone system and it works just fine, but everything breaks down when I want to use them for my normal addresses.

I cannot use them for...

1. Redundant uplinks while maintaining the same IP addresses

2. Redundant VPN while maintaining the same external IP address

3. Redundant Amazon VPC connections.

Can anyone help me with how the hell to configure this thing.

I basically never want to use the uplink IPs except for BGP advertisement. Everything else I would like to have a virtual interface over the 2 uplinks that has an IP in my /24 and then have the rest of my network flow out of that.

This thread was automatically locked due to age.

Parents

0 BAlfson over 9 years ago

I just can't "see" your topology and what you want to do, Richard. It sounds like you're creating a routing problem, but I bet I'm not alone in needing to see a diagram and pictures of your configuration.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 9 years ago

I just can't "see" your topology and what you want to do, Richard. It sounds like you're creating a routing problem, but I bet I'm not alone in needing to see a diagram and pictures of your configuration.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 RichardCook over 9 years ago in reply to BAlfson

http://i.imgur.com/4GRu2U1.png
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 9 years ago in reply to RichardCook

Please Edit your post, and insert your images into the post instead of leaving a possibly-insecure external link. We can't know if that external site is properly protected. The only malware I've gotten in over 10 years was from an external link to a picture in this forum several years ago.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel