To comment on the thread below, you don't need as beefy a router as you think. Just make sure you have reasonable memory, e.g. 256M should be plenty depending upon what you are doing. There are currently around 133,000 network route prefixes on the Internet, but your mileage will vary based on the ISPs you peer with. The bigger issues with BGP is picking good providers, get your own AS if you have multiple providers (which is a good idea), and configuring your BGP4 setup to send your annoucements out to optimize your traffic (i.e. using prepending, origin attribute, etc.), both inbound and outbound. These tools are blunt, but can be effective with a little bit of experimentation. Typically once you get it the way you want it you don't need to change it.
BGP is a good way to go for high availability, as it immediately responds to outages on the Internet. Other products use modified DNS behaviour, NATs, and other mechanisms to balance load. This may or may not meet your needs, it depends upon what you are trying to accomplish. If its just a few services, then they probably make a lot of sense. If its broader than that, then BGP may be appropriate. Regards, Bob Brandt, 3M -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] Behalf Of Rob Epping Sent: Tuesday, April 13, 2004 10:59 AM To: [EMAIL PROTECTED] Subject: Re: [FW-1] ISP Redundancy > -----Oorspronkelijk bericht----- > Van: Hal Dorsman [mailto:[EMAIL PROTECTED] > Verzonden: dinsdag 13 april 2004 16:30 > > > -----Original Message----- > > From: Bernardo Santos Wernesback [mailto:[EMAIL PROTECTED] > > Sent: Tuesday, April 13, 2004 8:52 AM > > > > Hi all, > > > > I am looking for some documentation on implementing ISP > > Redundancy. Can > > anyone point me to some resources? > > Although CP supports some link redundancy features, if you > want true ISP redundancy you need to run BGP. Do a search > on BGP in your favorite search engine and you will find > enough stuff to make you woozy. You will need to work > with your providers and have them coordinate an autonomous > system (AS) number for you, Absolutely true! BGP makes your ip-network reachable thru multiple ISPs. With ISP redundancy (as implemented into Checkpoint) you will abuse DNS for this which will be a pain. > and you will need a pretty > beefy router capable of handling a HUGE routing table. You could start with default route only BGP. A L3-switch will handle this just fine. We are using default route BGP on Cisco catalyst 3750. No sweat. > Here's one place to start. > > http://www.bgp4.as/ GRTNX, RobJE -- Home is near Enter. ((c) RonA) ======================================================================== Tel: +31 - 317 - 399800 s-mail: P.O. box 617 Fax: +31 - 317 - 423164 6700 AP Wageningen MailTo: [EMAIL PROTECTED] WWW: http://www.weer.nl/ ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
