Is it recommended to use HSRP or multiple default between Core Layer Switch and Customer Edge Router?

My client is asking me for following
Client is using Router as edge device. 2  WAN links from different service provider ( each 20 Mbps)  are getting terminated on the router. There are internal servers present in the network. Client want to make setup such that even if one wan link fails  internet users should be able to access web server. Moreover if the edge router fails there should be secondary edge device so that there is device redundancy ?
As per my understanding, in this scenario we need to do static one - to - one natting(belonging to WAN interface subnet). If we use two routers as Customer edge ans if we connect core layer switch to these two router, is it recommended to use HSRP/VRRP/GLBP or two default route on core switch pointing to two routers with equal ad value. we will also track the wan link with help of ip sla.
which is recommended solution  Router redundancy protocol or Default routes.?

Just had another read of this post and some other points have come up.
1) I assumed your secondary link was for redundancy but you talk about terminating both SP links on the same router in your first paragraph.
Did you mean this or are you going to be terminating a link per router ?
2) are you using the second router purely for backup ?
3) something you didn't ask about but is relevant is the IP addressing. Are you using provider independent addressing or does each SP provide you with an address block.
If it is the second then you are going to have an issue with the web server. The problem is which provider's IP do you use for the web server ie.
if you use the primary provider IP then that will be the DNS record on the internet. If the primary router fails then the IP address will change on the secondary router but DNS will still be handing out the primary IP.
If you enter both IPs (primary and secondary) into DNS then you would get load balancing but this means both links will be used and the secondary would not just be backup.
In addition if one of the links fails then DNS does not know this so it will still be handing out the failed address as well as the address that is still up which means some connections will work and some won't.
Jon

Similar Messages

  • HSRP between 2 access switches and 2 core switches

    Hi I am looking for running HSRP between 2 access switches and 2 core switches for client PC and Server network’s next-hop redundancy as per attached setup.
    As you can see I have used one /29 network for connecting CORE & ACCESS switches & configure Interface VLAN10 (Layer 3 SVI) with shown IPs and standby IP (VIP).G0/1 on Access Switches & G2/1 on Core Switches are access ports for VLAN10.
    There is a L2 Trunk interconnecting Core-Main/Backup & as well as Access-Main/Backup Switches allowing VLAN10 to allow VLAN10’s HSRP packets to pass through (apart from other HSRP instances).
    Below are the HRSP & Trunk configuration on Core and Access Switches please have a look and suggest if they are correct in term of HSRP implementation, as I can see on both side HSRP master & standby status are fine as desired, but I can’t ping VIP of ACCESS Switch from CORE switch, but the VIP of CORE switch I can ping from ACCESS switch.
    Access-Main
    interface GigabitEthernet0/1
     description ***Connected to CR-SW-01 PORT G2/1***
     switchport access vlan 10
     switchport mode access
     load-interval 30
    interface GigabitEthernet0/2
     description ***Connected to AC-SW-01 & AC-SW-02 for HRSP***
     switchport trunk encapsulation dot1q
     switchport trunk allowed vlan 10,40
     switchport mode trunk
     load-interval 30
    interface Vlan10
     description ***Connected to CR-SW-01 PORT G2/1***
     ip address 10.10.11.1 255.255.255.248
     standby 1 ip 10.10.11.2
     standby 1 timers msec 200 msec 750
     standby 1 preempt delay minimum 180
     standby 1 authentication accvlan10
    Access-Backup
    interface GigabitEthernet0/1
     description ***Connected to CR-SW-02 PORT G2/1***
     switchport access vlan 10
     switchport mode access
     load-interval 30
    interface GigabitEthernet0/2
     description ***Connected to AC-SW-01 & AC-SW-02 for HRSP***
     switchport trunk encapsulation dot1q
     switchport trunk allowed vlan 10,40
     switchport mode trunk
     load-interval 30
    interface Vlan10
     description ***Connected to CR-SW-02 PORT G2/1***
     ip address 10.10.11.3 255.255.255.248
     standby 1 ip 10.10.11.2
     standby 1 priority 10
     standby 1 timers msec 200 msec 750
     standby 1 preempt delay minimum 180
     standby 1 authentication accvlan10
    Core-Main
    interface GigabitEthernet2/1
     description ***Connected to AC-SW-01 PORT G0/1***
     switchport access vlan 10
     switchport mode access
     load-interval 30
    interface GigabitEthernet2/2
     description ***Connected to CR-SW-01 & CR-SW-02 for HRSP***
     switchport trunk encapsulation dot1q
     switchport trunk allowed vlan 10,20
     switchport mode trunk
     load-interval 30
    interface Vlan10
     description ***Connected to AC-SW-01 PORT G0/1***
     ip address 10.10.11.4 255.255.255.248
     standby 1 ip 10.10.11.5
     standby 1 timers msec 200 msec 750
     standby 1 preempt delay minimum 180
     standby 1 authentication crvlan10
    Core-Backup
    interface GigabitEthernet2/1
     description ***Connected to AC-SW-02 PORT G0/1***
     switchport access vlan 10
     switchport mode access
     load-interval 30
    interface GigabitEthernet2/2
     description ***Connected to CR-SW-01 & CR-SW-02 for HRSP***
     switchport trunk encapsulation dot1q
     switchport trunk allowed vlan 10,20
     switchport mode trunk
     load-interval 30
    interface Vlan10
     description ***Connected to AC-SW-02 PORT G0/1***
     ip address 10.10.11.6 255.255.255.248
     standby 1 ip 10.10.11.5
     standby 1 priority 10
     standby 1 timers msec 200 msec 750
     standby 1 preempt delay minimum 180
     standby 1 authentication crvlan10

    Hi Rick thanks once again, so I am assuming I should use to configure as below and still one /29 subnet I can use to connect these Switches with the above static routings.
    Access Switch-Main
    interface Vlan10
     description ***Connected to CR-SW-01 PORT G2/1***
     ip address 10.10.11.1 255.255.255.248
     standby 2 ip 10.10.11.2
     standby 2 timers msec 200 msec 750
     standby 2 preempt delay minimum 180
     standby 2 authentication accvlan10
    ip route 192.168.20.0 255.255.255.0 10.10.11.5
    Access Switch-Backup
    interface Vlan10
     description ***Connected to CR-SW-02 PORT G2/1***
     ip address 10.10.11.3 255.255.255.248
     standby 2 ip 10.10.11.2
     standby 2 priority 10
     standby 2 timers msec 200 msec 750
     standby 2 preempt delay minimum 180
     standby 2 authentication accvlan10
    ip route 192.168.20.0 255.255.255.0 10.10.11.5
    Core Switch -Main
    interface Vlan10
     description ***Connected to AC-SW-01 PORT G0/1***
     ip address 10.10.11.4 255.255.255.248
     standby 1 ip 10.10.11.5
     standby 1 timers msec 200 msec 750
     standby 1 preempt delay minimum 180
     standby 1 authentication crvlan10
    ip route 192.168.40.0 255.255.255.0 10.10.11.2
    Core Switch -Backup
    interface Vlan10
     description ***Connected to AC-SW-02 PORT G0/1***
     ip address 10.10.11.6 255.255.255.248
     standby 1 ip 10.10.11.5
     standby 1 priority 10
     standby 1 timers msec 200 msec 750
     standby 1 preempt delay minimum 180
     standby 1 authentication crvlan10
    ip route 192.168.40.0 255.255.255.0 10.10.11.2

  • Use of trading partner field in GL Master, Vendor and Customer Master

    Can anybody explain in detail  what is the use of trading partner in masters.
    In GL Master, whether it needs to be updated for all the GLs or only a specific GLs.

    The Trading partner field in customer and Vendor master is used to identify the affiliated companies involved in intercompany transactions.
    The trading partner field is copied into the account receivable and payable transactions from the customer and vendor master. The Trading partner field also appears in the line items of the offsetting clearing accounts via substitutons.
    The trading partner field subsequently can be used during consolidation to eliminate intercompany receivables and payables from the balance sheet and eliminate Intercompany sales and expense figures from the P&L statement.
    Customer or vendor invoice: Trading partner information is captured from the customer and vendor master.
    Invoice receipts against clearing account and transfers with clearing: While posting Invoice receipt during an Intercompany transaction, the invoice receipt can be posted to a clearing account instead of expense account. The selection of open items must be restricted to those with a certain trading partner when posting a transfer later on, as the trading partner is copied into the transfer line item.
    Customer and Vendor Payments: If document types for payments are configured to allow for more than one trading partner in a payment document then the trading partner is copied only on the customer and vendor line item and not on the offsetting entry.
    Assets transferred between company codes: If an asset is transferred between group company codes, two accounting documents are generated in each of the involved company codes. The trading partner of each document must be set to the company id of the other company code.
    When goods are received from group company code the trading partner is picked for the inventory and GR/IR line items from the vendor mentioned on the order. If invoices are open as on the balance key date then group-internal provisions are created from the GR/IR accounts. These provisions can later be eliminated in Consolidation system.
    Regards,
    Gaurav

  • Can I use the the measured time between the first count and the last count in a fixed time window in order to increase the accuracy of a quadrature velocity measurement?

    I am measuring velocity using a linear encoder. Resolution is 40microns, sample frequency is 1MHz and the real velocity is oscillatory in nature with an amplitude of 200 to 400 mm/s with a freq of about 1Hz. We use a 5ms fixed time window to measure velocity. The quanization error for this is 8mm/s. Can I get rid of the quatization error by somehow measuring the exact time from the first pulse to the last pulse in the measurement window?

    There is probably a way to do it, but it it may be easier to use an X-series board for the job.   They support a new counter capability for count reset on a digital edge without needing to be configured in encoder position mode.  I am not sure exactly how that feature's been implemented however, so maybe it won't make things easier after all.
    The plan based on the hoped-for behavior: 
    1. Configure an X-series counter for pulse generation based on "ticks" of your clock channel.
    2. Set both initial delay and low time to the critical # of ticks.
    3. Configure for count reset on a digital edge (if possible in pulse generation mode)
    4. Configure the count reset value to be the critical # (or possibly 1 less, if possible in pulse generation mode)
    5. If you want the output to remain high indefinitely, configure the counter task to use its own output as a
    pause trigger, and pause while high.
    The way pulse generation works is to preload a # of "low time" ticks into the count register.  Then every source edge will decrement the count.  When the count reaches terminal count (0), the counter's output is toggled (or can be configured to pulse).  The register is then loaded with the # of "high time" ticks and the process continues.
    You would be perpetually interrupting the count-down process as long as you got your triggers in time.  The count would keep getting reset to the # of low counts, keep decrementing toward 0 without reaching it, and so on.  If ever you did reach 0, the output state would toggle high, then the high state would prevent subsequent clock signals from decrementing the count.
    You can conceivably do a similar thing with a 6601, but I'm pretty sure you'd need 2 counters working together to get it working.
    -Kevin P

  • How to use Recovery DVD to install new copy of OS and CUSTOM PARTITIONS?

    Hi
    I have problem with start appropriate recovery function from created Thoshiba Recovery DVD.
    I burn two DVD using Toshiba Media Recovery Creator witch was preinstalled on my computer. Now I want to use it to install new copy of Windows 7 OS on my laptop. BUT I would not want to clear entire HDD. I want to format only C: partition, and leave data on my D: partition. Also I want to define C: partition size.
    When I insert DVD and boot form it, some app start but display info that all partition will be removed. I can not choose another option.
    How can I do it?

    Hello
    Check please http://aps2.toshiba-tro.de/kb0/HTD1303440001R02.htm document.
    I think everything must be explained there. If you have more questions please let us know.

  • I've been using firefox as my default brower for a year and all of a sudden when I click on it , it won't open.

    Google chrome will open as will internet explorer but not firefox.

    A possible cause is security software (firewall,anti-virus) that blocks or restricts Firefox or the plugin-container process without informing you, possibly after detecting changes (update) to the Firefox program.
    Remove all rules for Firefox and the plugin-container from the permissions list in the firewall and let your firewall ask again for permission to get full unrestricted access to internet for Firefox and the plugin-container process and the updater process.
    See:
    *https://support.mozilla.org/kb/Server+not+found
    *https://support.mozilla.org/kb/Firewalls

  • Can I use multiple computers eg. my desktop, laptop and iPad on an individual subscription?

    If I buy a individual subscription can I use photoshop on multiple computers eg. my desktop, laptop and iPad?
    If so, what is required on each device? If I am on my laptop away form home can I log onto photoshop and still access documents Ive been working on?
    Sorry for the stupid questions, I do not fully understand how the 'Cloud' works and what it offers me if I need to use photoshop on several devices.
    Any assistance would be appreciated.
    Thank you

    You have 2 activations, meaning you can use it on 2 computers. Mobile devices are treated separately and are not tied to the activation limit. Whether or not you will be able to work on your documents across will depend on syncing them or making them otherwise available through some shared (web) storage.
    Mylenium

  • HSRP EIGRP TWO DEFAULT ROUTES

    Hi,
    I have a question concerning EIGRP routing on a L3 switch behind a HSRP HA pair of routers which connect to a WAN.
    HSRP is operating as should be and when R1 fails, or an interface thereon, R2 becomes the active. All good.
    However there are now two default routes in the route table on the L3 switch. One is routing traffic to the R2 real IP which is expected but also there is the old default route to R1's real IP.
    Using EEM we can overcome this but is there another simpler method to prevent this occurring?
    Thanks
    F

    F
    If i understand correcty your LAN interfaces on the routers ie. the ones connecting to the L3 switch are running HSRP and you are also running EIGRP between the L3 switch and the routers.
    If so you wouldn't usually have both solutions in use ie. you either -
    1) use HSRP and point the default route on the L3 switch to the HSRP VIP
    or
    2) use EIGRP between the routers and the L3 switch. If a router or interface fails it should stop advertising the default route to the L3 switch.
    However that sounds like it is not happening which suggests the default routes are not coming from the WAN.
    So where are the default routes in EIGRP on the L3 switch coming from ?
    Jon

  • I have two apple id accounts ,when i used to update application it used to prompt a default id and if the application was downloaded using the other id i would cancel and it would prompt the other id but not any more .

    i have two apple id accounts ,when i used to update application it used to prompt a default id (the old one) and if the application was downloaded using the other id i would cancel and it would prompt the other id but not any more .
    it just prompt the old id which im not signed in with im signed in using the new id and when i cancel nothing happens and when i try to update applications separately  i have the same problem .
    im signed in using the new id
    the old one is my wife's so i can't delete it
    the problem happens  when i update all or  each application by its own
    using ios 5.0.1 on a iphone 3gs
    the applications are downloaded using both the new and old id's
    any help will be greatly appreciatedِ

    These are user-to-user forums, you are not talking to Apple here and they don't monitor these forums - I've asked the hosts to remove yout account ids from your post.
    In terms of combining accounts it's not currently possible to do so, nor to copy/transfer content from account to another.

  • Unable to use AirPlay from multiple iOS and MacBook pro

    HI, I seem to be having issues using AirPlay From multiple iOS devices.
    I have the following devices, iphone 6 plus, iPad air (both Gen 1 and 2) an iPad 2 and a MacBook Pro running Yosemit. I also have 2 Apple TVs (both gen 1 and 2).
    Recently I have found that I am unable to use AirPlay on any of the iOS devices to either Apple TVs, the MacBook Pro will Airplay mirror ok, I am however able to use iTunes shairing from a Windows 8PC. I have restarted and also reset both Apple TVs and my router, I have also reset the connection settings on all the iOS devices but still can't resolve the issue.
    The Apple TVs have Internet connection so I can't see any issues network connections.
    ANyone else got got any Ideas?
    Thanks

    Try the following steps, check whether things are working after each step where appropriate, before trying the next.
    Check AirPlay is turned on on the Apple TV (turn it off and on if it already is)
    Check that both devices are on the same network (Settings > Wifi, on the mobile device and Settings > General > Network, on the Apple TV).
    Restart the Apple TV (Settings > General > Restart).
    Restart the Apple TV by removing ALL the cables for 30 seconds.
    Restart your router. (Also try removing it’s power cord for at least 30 seconds)
    Restart your mobile device.
    If you are still having problems, the following article(s) may help you.
    Troubleshooting AirPlay
    Troubleshooting Wi-Fi networks and connections
    Recommended Wi-Fi settings
    Wifi Diagnostic Software (for Mac users)
    You may also find some help on this page, where I’ve collected some of the more unusual solutions to network issues.
    When making adjustments to your network for better optimisation, you may find some of the points mentioned on this page helpful.
    This is answer is provided from my own database of boilerplate responses and the content was last reviewed and/or tested on: 2014/12/16

  • Are there pepes out there using ipads to make group music with children who have profound and multiple learning difficulties? I am and I'd love to share the ideas.

    Are there pepes out there using ipads to make group music with children who have profound and multiple learning difficulties? I am and I'd love to share the ideas.
    I am the music teacher in a  Special school in London UK currently working with Drake Music who are a charity that go into schools to enable music making through music technology. Our purpose is to enable a group of 7 children who have profound and multiple learning difficulties to play instruments on the ipads or through the soundbeam and to be able to play and jam together with me underscoring on the guitar. We're having a lot of fun and we're all learning a lot about what can be achieved using the amazing ipad technology. If you're doing a similar project I'd love to hear from you and we can swap notes!

    See Recover your iTunes library from your iPod or iOS device.
    You can use iTunes to easily manage multiple devices by having each sync with selected playlists. I don't personally have any recommendations for other software but perhaps others might.
    tt2

  • How to use Keychain for multiple users on one computer?

    I have a new Macbook Pro with Yosemite.  I just moved over from PC for my work computer and the Keychain thing is killing me!  I am a social media consultant so I manage multiple accounts for multiple clients.  I need a way to log in and out as them on many different platforms.  The reality is that I am the only user but I log in and out of different things as if this was a public computer with multiple users. 
    PC allowed me a drop-down option with each login.  For example the email box could be clicked and then I could select the client email that I needed to fill in.  The password would then auto-populate.  Is there any setting I can change to make this happen on a Macbook? I have been logging in, deleting the info in Keychain, then logging in for the next client, delete...etc.
    Most password managers don't work because of this same problem.  Please don't recommend a password manager app unless it can handle logging in and out of (for example)10 different LinkedIn profiles.
    Any advice would be greatly appreciated!

    Tanja Turtsanyi wrote:
    I have a new Macbook Pro with Yosemite.
    Apple>About This Mac>More Info>Service
    Please read the warranty paperwork that came w/your computer.
    You have 14 days to return the computer w/no questions asked. 
    You have 90 days of FREE phone tech support on top of your standard 1 year warranty unless you also purchased AppleCare which gives you an additional 2 years of coverage plus FREE phone support.
    Strongly suggest that you take FULL advantage of the above before it runs out.  Let Apple deal w/the problems.
    Mac OS X (10.4)
    Conflicting info:  Please update/correct your profile so that you can receive the correct troubleshooting suggestions.  This will assist the users in trying to help you.  Thank you.

  • Can you use sync on multiple computers at the same time? ie have someone else logged into your firefox account for you whilst you are also logged in

    I am trying to sign up to something but there is only a short window so was going to ask a friend to sign in at the same time using my account to try to sign up (with my password being saved into my firefox account)

    Hi. Yes, you can use Sync on multiple devices at the same time. I use it to keep my bookmarks in sync across my desktop and Android versions of Firefox.

  • Using iOS5 on multiple devices

    hi Forum
    Is there a view on how to use iOS5 on multiple devices when multiple devices are owned by differing family members? i have an iPhone, my partner has an iPhone, and together we have an iPad. [i have a MBP as well but havent updated to Lion yet, dont knwo if this is part of this question]. iOS5 can sync to multiple devices so can we sync all apps and musc between the mobile devices? do they have to be on the same apple user ID? of have i got that wrong?
    also contacts and photos wise, we both have our own photos, contacts, calendar and mail. can any/all of these be syncd between us all? i guess the one that would be syncd would be photos as youd want to see that on the ipad.
    Andi

    The iTunes account and iCloud accounts are not linked on your devices.
    So you can each have an iCloud account that works on your iDevices nd all be logged into the same iTunes account in the iTunes Store, App Store, IBooks, etc.
    You do really need your iMac to be on 10.7.2 as it was a requirement before you moved to iCloud, did you lie when asked the question "are all your devices ready for iCloud".

  • I used to have an application in my iPhone 4 and 4s that captures business card and creates its content to my contacts. Its no longer working with my i5. Can you recommend me a new apps for this same function

    I used to have an application in my iPhone 4 and 4s that captures business card and creates its content to my contacts. Its no longer working with my i5. Can you recommend me a new apps for this same function

    Try CardMunch it works well for me

Maybe you are looking for

  • Void warranty

    i encountered this problem this afternoon. i went to a power mac service center and then when they did the check up on the phone they said that there's something missing. they call it "bracket" but i didn't go to someone to fix my phone. this is my f

  • How to remove a node from a target xml payload in reciever file channel

    i have a scenario where i have to remove a node from my target xml file in receiver file channel and want xml as the output file. I don't want a fixed length file. How to do that in receiver channel? Do we need to use file content conversion for that

  • How do I link a Spry data set with a detail region to a html web site?

    I have created a spry data set with a detail region. It works well. However, I would like to have a link from the detail region to another html web site. Can anyone help with the code? Below is the spry data set. <?xml version="1.0" encoding="utf-8"?

  • Windows 7 ask for Username and Password to connect to TC...

    ...but I only have a password set for mine. Is there a default Username I should use? TC are listed under my network devices, and the Username/ Password then pops up when I click at it, but this might not be how I access the disk on it? I have checke

  • Purchase limit for in app purchases

    Ive been playing clash of clans for a while now, and its really annoying if i buy the $100 pack of gems more then three times then i cant purchase it anymore, it tells me to contact itunes support for further assiatance, and ive did that and same thi