that will work. every thing going out will overloaded. and an inverse NAT is done for the packets coming in. u will have controll over the traffic getting out, that is on a round robin fashion, one packet out se0 the next out se1. the traffic coming in the links will depend on the IP's u use on the NAT statements(the static ones)thereby giving some sort of control, if you see a link being over utilized, u could use more IP's from the other POOL giving by the seconf ISP, to balance it some what.
""Terry Oldham"" a icrit dans le message de news: [EMAIL PROTECTED] > More Info: > > FastEthernet Int0 172.16.100.2/24 > Serial0 144.228.52.114 255.255.255.252 Sprint > IP Block 65.160.124.193 - 65.160.124.222 > > Serial1 65.123.132.166 255.255.255.252 Qwest > IP Block 65.120.161.161 - 65.120.161.190 > > Honestly I have bitten off a little more than I can chew on this one, > however I really need to make it work so all and > any advice will be taken. > > I have been talking with Cisco a little and here is the example they sent > me: > > Current configuration : 1941 bytes > > version 12.2 > > service timestamps debug uptime > > service timestamps log datetime msec localtime show-timezone > > service password-encryption > > hostname Inet_Router > > logging buffered 4096 debugging > > enable secret 5 $1$L3f5$owQH/giYdx/Gui/nASA9F1 > > enable password 7 13041200045D51 > > ip subnet-zero > > ip cef > > ip name-server 198.6.1.122 > > interface FastEthernet0/0 > > ip address 10.30.25.201 255.255.255.0 > > ip nat inside > > speed 100 > > full-duplex > > interface Serial0/0 > > description Verio > > ip address 165.254.203.110 255.255.255.252 > > ip nat outside > > interface Serial0/1 > > description Cable&Wireless > > ip address 166.63.156.102 255.255.255.252 > > ip nat outsid > > ip nat pool Verio 209.139.11.98 209.139.11.98 netmask 255.255.255.224 > > ip nat pool Cable 208.168.204.2 208.168.204.2 netmask 255.255.255.0 > > ip nat inside source route-map Cable1 pool Cable overload > > ip nat inside source route-map Verio1 pool Verio overload > > ip nat inside source static 10.30.25.27 209.139.11.122 > > ip nat inside source static 10.30.25.25 209.139.11.120 > > ip nat inside source static 10.30.25.63 209.139.11.111 > > ip nat inside source static 10.30.25.62 209.139.11.110 > > ip nat inside source static 10.30.25.33 208.168.204.6 > > ip nat inside source static 10.30.25.32 208.168.204.5 > > ip nat inside source static 10.30.25.31 209.139.11.101 > > ip nat inside source static 10.30.25.30 209.139.11.100 > > ip nat inside source static 10.30.25.137 209.139.11.105 > > ip classless > > ip route 0.0.0.0 0.0.0.0 165.254.203.109 > > ip route 0.0.0.0 0.0.0.0 166.63.156.101 > > ip route 10.0.0.0 255.0.0.0 FastEthernet0/0 > > ip http server > > ip pim bidir-enable > > access-list 10 permit 10.30.25.0 0.0.0.255 > > route-map Verio1 permit 10 > > match ip address 10 > > match interface Serial0/0 > > route-map Cable1 permit 10 > > match ip address 10 > > match interface Serial0/1 > > line con 0 > > login > > line aux 0 > > line vty 0 3 > > login > > line vty 4 > > login > > no scheduler allocate > > end > > > > ""Amar KHELIFI"" wrote in message > news:[EMAIL PROTECTED] > > could u give us more info pls, as far as the IP's that you will be using. > > wasn't it u that wanted to assign 2 ip's for each server you have? > > if that is so,u can do the following: > > creat 2 VLAN's on ur switch. > > creat 2 subinterfaces on the router(must have fast ether) for the vlans. > > PBR every thing from ISP A to VLAN A, both ways. > > PBR every thing from ISP B to VLAN B, both ways. > > make sure the servers don't symetrically route the packets. > > with the above, u will have control over traffic that crosses ur router, > but > > then which IP will the clients use, depends on the DNS config, wether it > > will load balance on DNS queries is also another issue, so more or less u > > will have no control over traffic coming to ur network. > > > > if you had ur own net block, it would be easy to load balance, u'd have to > > call ur ISP's they will give u a community that u will joing from which > they > > will load balance, but you will need BGP, of courrse. > > > > but please give more information to further think it out. > > > > > > ""Terry Oldham"" a icrit dans le message de news: > > [EMAIL PROTECTED] > > > The T1's are from different providers, Qwest and Sprint. And no we will > > not > > > be running BGP... > > > > > > > > > ""Troy Leliard"" wrote in message > > > news:[EMAIL PROTECTED] > > > > First big question, are your T1's from the same provider, or from a > > > > different provider, and thus different "public" ip address space? If > it > > > is > > > > from a different provider, you may well run into some problems with > NAT. > > > > > > > > Say for example, client A connects to your webserver (via ISP A's > public > > > IP > > > > address that is assigned to you, say x.x.x.x) which is then Nat'd to > > your > > > > internal RFC1918 address That will work all fine and dandy, but what > > > about > > > > if your default gateway is ISP B's T1. Outbound packets, returning to > > > > Client A, will be NAT'd to ISB B's outside address, say y.y.y.y. If > > > Client > > > > A is behind a stateful firewall, return packets will be dropped, as it > > > will > > > > have ISP B's SRC address, and it will be expecting ISP A's. > > > > > > > > There are a number of ways around this, but I will wait for more > detauls > > > > before going on. Presumably you are not / will not be running BGP, > and > > > have > > > > your own AS? > > > > > > > > Terry Oldham wrote: > > > > > > > > > > Hello all, > > > > > > > > > > I am attempting to setup a Cisco 1721 Router with load > > > > > balancing and > > > > > NAT so that we can provide a dual T1 connection to the network. > > > > > This is the > > > > > first time I have done anything like this and I was wanting to > > > > > know if > > > > > anyone had any good pointers they could give me or any commands > > > > > that I > > > > > should beware of or add. > > > > > > > > > > Thanks, > > > > > > > > > > Terry O Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=64932&t=64904 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
