More Info:
FastEthernet Int0 172.16.100.2/24
Serial0 144.228.52.114 255.255.255.252 Sprint
IP Block 65.160.124.193 - 65.160.124.222
Serial1 65.123.132.166 255.255.255.252 Qwest
IP Block 65.120.161.161 - 65.120.161.190
Honestly I have bitten off a little more than I can chew on this one,
however I really need to make it work so all and
any advice will be taken.
I have been talking with Cisco a little and here is the example they sent
me:
Current configuration : 1941 bytes
version 12.2
service timestamps debug uptime
service timestamps log datetime msec localtime show-timezone
service password-encryption
hostname Inet_Router
logging buffered 4096 debugging
enable secret 5 $1$L3f5$owQH/giYdx/Gui/nASA9F1
enable password 7 13041200045D51
ip subnet-zero
ip cef
ip name-server 198.6.1.122
interface FastEthernet0/0
ip address 10.30.25.201 255.255.255.0
ip nat inside
speed 100
full-duplex
interface Serial0/0
description Verio
ip address 165.254.203.110 255.255.255.252
ip nat outside
interface Serial0/1
description Cable&Wireless
ip address 166.63.156.102 255.255.255.252
ip nat outsid
ip nat pool Verio 209.139.11.98 209.139.11.98 netmask 255.255.255.224
ip nat pool Cable 208.168.204.2 208.168.204.2 netmask 255.255.255.0
ip nat inside source route-map Cable1 pool Cable overload
ip nat inside source route-map Verio1 pool Verio overload
ip nat inside source static 10.30.25.27 209.139.11.122
ip nat inside source static 10.30.25.25 209.139.11.120
ip nat inside source static 10.30.25.63 209.139.11.111
ip nat inside source static 10.30.25.62 209.139.11.110
ip nat inside source static 10.30.25.33 208.168.204.6
ip nat inside source static 10.30.25.32 208.168.204.5
ip nat inside source static 10.30.25.31 209.139.11.101
ip nat inside source static 10.30.25.30 209.139.11.100
ip nat inside source static 10.30.25.137 209.139.11.105
ip classless
ip route 0.0.0.0 0.0.0.0 165.254.203.109
ip route 0.0.0.0 0.0.0.0 166.63.156.101
ip route 10.0.0.0 255.0.0.0 FastEthernet0/0
ip http server
ip pim bidir-enable
access-list 10 permit 10.30.25.0 0.0.0.255
route-map Verio1 permit 10
match ip address 10
match interface Serial0/0
route-map Cable1 permit 10
match ip address 10
match interface Serial0/1
line con 0
login
line aux 0
line vty 0 3
login
line vty 4
login
no scheduler allocate
end
""Amar KHELIFI"" wrote in message
news:[EMAIL PROTECTED]
> could u give us more info pls, as far as the IP's that you will be using.
> wasn't it u that wanted to assign 2 ip's for each server you have?
> if that is so,u can do the following:
> creat 2 VLAN's on ur switch.
> creat 2 subinterfaces on the router(must have fast ether) for the vlans.
> PBR every thing from ISP A to VLAN A, both ways.
> PBR every thing from ISP B to VLAN B, both ways.
> make sure the servers don't symetrically route the packets.
> with the above, u will have control over traffic that crosses ur router,
but
> then which IP will the clients use, depends on the DNS config, wether it
> will load balance on DNS queries is also another issue, so more or less u
> will have no control over traffic coming to ur network.
>
> if you had ur own net block, it would be easy to load balance, u'd have to
> call ur ISP's they will give u a community that u will joing from which
they
> will load balance, but you will need BGP, of courrse.
>
> but please give more information to further think it out.
>
>
> ""Terry Oldham"" a icrit dans le message de news:
> [EMAIL PROTECTED]
> > The T1's are from different providers, Qwest and Sprint. And no we will
> not
> > be running BGP...
> >
> >
> > ""Troy Leliard"" wrote in message
> > news:[EMAIL PROTECTED]
> > > First big question, are your T1's from the same provider, or from a
> > > different provider, and thus different "public" ip address space? If
it
> > is
> > > from a different provider, you may well run into some problems with
NAT.
> > >
> > > Say for example, client A connects to your webserver (via ISP A's
public
> > IP
> > > address that is assigned to you, say x.x.x.x) which is then Nat'd to
> your
> > > internal RFC1918 address That will work all fine and dandy, but what
> > about
> > > if your default gateway is ISP B's T1. Outbound packets, returning to
> > > Client A, will be NAT'd to ISB B's outside address, say y.y.y.y. If
> > Client
> > > A is behind a stateful firewall, return packets will be dropped, as it
> > will
> > > have ISP B's SRC address, and it will be expecting ISP A's.
> > >
> > > There are a number of ways around this, but I will wait for more
detauls
> > > before going on. Presumably you are not / will not be running BGP,
and
> > have
> > > your own AS?
> > >
> > > Terry Oldham wrote:
> > > >
> > > > Hello all,
> > > >
> > > > I am attempting to setup a Cisco 1721 Router with load
> > > > balancing and
> > > > NAT so that we can provide a dual T1 connection to the network.
> > > > This is the
> > > > first time I have done anything like this and I was wanting to
> > > > know if
> > > > anyone had any good pointers they could give me or any commands
> > > > that I
> > > > should beware of or add.
> > > >
> > > > Thanks,
> > > >
> > > > Terry O
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=64916&t=64904
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
