Load balancing - Internet

Hi, I have two service provider with access to Internet and I like load balancing this links.... Is possible ?for example, service provider 1 only HTTP and service provider 2 all not HTTP. ¿?

hi
You can match the traffic patterns based on the port number using Access-list and bind them under the route map to force them via the prefrred link.
You can also make use of secondary host option available so that if the primary configured link is unavailable coz of some link problem traffic can take the secondary path thru the other working link.
http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/products_configuration_guide_chapter09186a00800c75d2.html
regds

Similar Messages

  • Load Balancing Internet Sources with WSA

    Hello everyone,
    Is is possible to have multiple internet sources with the WSA like Microsoft Forefront TMG you can have multiple internet sources and adjust for example 33% load on the first link and 66% percent on the second link .
    We currently have the S160 .
    Thanks .

    If you mean "use the WSA to load balance traffic between 2 or more internet providers", no... the WSA won't do that.

  • Load balancing Internet and Site to Site VPN's across Multiple ISP.

    Hi Everyone,
    We  are currently connected to a single ISP with different Internet related  services like mail, web, dns and IPSEC site to site VPN's running. We  would be adding another ISP and do load balancing across these multiple  links. We are using Cisco ASA firewall.
    Can anyone suggest a load  balancer which can not only provide load balancing of the links but  failover as well for mail,web and IPSEC Site to Site VPN's. I came  across Peplink that can achieve this but I guess I will have to  decommision our ASA in order to install Peplink.
    Check attached diagram, this will be our proposed design.
    Regards

    Hi Sundeep,
    The simplest solution would be to put an IOS router (or two with HSRP) between the ASA and the ISPs and do policy-based routing for your flows between the 2 ISPs. Otherwise, any load balancer should work fine with the ASA. If failover of the load balancer is a requirement, you'll need to look at product specific documentation for whichever solution you choose.
    -Mike

  • Load Balancing internet circuits

    Can I use my LocalDirector to balance connections to 2 routers instead of servers, to balance network traffic inside_to_outside of my network?
    scenario:
    servers --> LOCALDIRECTOR / Router1 --- internet
    \ Router2 --- internet
    Is this possible?
    Thanks in advance,
    Marconi

    Why not just BGP peer with the 2 ISP's ? This is alot simpler and much more effective for load-balancing and redundancy.

  • HttpClusterServlet Proxy Load Balancing with Multiple Clusters

              How do I load balance JSPs and Servlets using the HttpClusterServlet proxy server
              approach when I have more than one cluster?
              It appears from the docs that there is a 1 to 1 relationship between the non-clustered
              managed proxy server that has the HttpClusterServlet and the cluster (1 proxy
              to 1 cluster).
              

    Preferred method would be domain, domainhash, url or urlhash as described in:
    http://www.cisco.com/univercd/cc/td/doc/product/webscale/css/bsccfggd/contrule.htm#xtocid2610122.
    do not recommend to use round-robin method for load balancing internet proxies. It creates inefficient usage of the storage and bandwidth, as more proxies can have to cache the same objects.

  • Proxy Load Balancing with CSS

    Are there any chances to use CSS with 2 CE50x to implement proxy load balacing and improve the conection to the internet?

    Preferred method would be domain, domainhash, url or urlhash as described in:
    http://www.cisco.com/univercd/cc/td/doc/product/webscale/css/bsccfggd/contrule.htm#xtocid2610122.
    do not recommend to use round-robin method for load balancing internet proxies. It creates inefficient usage of the storage and bandwidth, as more proxies can have to cache the same objects.

  • Load Balance guest Internet access via two different DMZ zones at two sites

    Hi Sir,
    My customer has the following unified wireless guest access requirement:
    - There are 2 internet links and dmz zones at two different locations, Site A and Site B
    - Data centre is at Site A
    - WiSM is proposed to be installed at the Cat 6500 in Site A
    - Lightweight AP are distributed across Site A, Site B and other branches
    - Only one anchor WLC is proposed at Site A, DMZ zone to provide guest internet access
    My customer would like to load balance the guest via the two internet link at Site A and Site B but with the same SSID across all locations. Can it be done since only one anchor at Site A? How about puttting another anchor WLC at Site B, DMZ zone? But how can i establish two EoIP tunnel to two different anchor WLC from a single WiSM?
    Thanks for your help
    Delon

    You can... but you can't control where the traffic will flow. The wlc will determine which DMZ wlc it will use. The wlc will load balance, but traffic in site A might go to site B. I currently have deployed that senerio in multiple client installations....

  • Internet Based Clients via F5 Big-IP load balancer

    Hi Guys,
    Please help with below question....
    We have the requirement to support internet based clients...we have a proper MS PKI infra in-place. The SCCM design is like this : Primary Server is on corporate LAN and I have attached a site system server which is in DMZ network ( Say ABC Zone ). Now as
    per my knowledge DMZ SCCM Site System server should be accessible to clients over internet connection and to make this happen, FQDN of site systems that support Internet-based client management must be registered as host entries on public DNS servers.
    Now the twist is... as per our company policy we cannot make that SCCM Site system server directly available on internet... Network team is saying there is another DMZ zone ( Say PQR Zone ) where they have F5 Big-IP load balancer which are internet facing
     ( HTTPS ). Now they are saying that our SCCM clients should hit those devices and then internally re-direct to our SCCM site system server kept in ABC Zone.
    VeriSign certificates will be used to encrypt in-coming network traffic to the F5 Big-IP Load Balancers configured as ADFS reverse proxy servers residing in the PQR Zone.
    Is this scenario supported ? Please let me know what alternates we can have to avoid our SCCM server not directly facing to internet.
    Thanks,
    Sam 

    Hi Jason,
    Thanks for your quick and prompt reply as always. My answers in BOLD...
    First a question, you said "we have a proper MS PKI infra in-place". Does this mean you have a CDP exposed to the Internet or is an OCSP responder Internet accessible? If not, you will have issues although this can be overcome by disabling CRL checking
    on the clients, that does lower your security posture. With "Proper PKI infra" I meant... they have if available already and supporting SCCM 2007 environment with it...but not supporting internet based clients in SCCM 2007. They implemented PKI there
    just for better security. At present PKI CRL server is on internal network and the assumption is that, machines will also VPN-in the corporate network for CRL and certificate renewal when required...at some point in time.
    To your real question here, is the F5 bridging or can it be set to pass-through? Pass-through is generally easier. Ultimately though, ConfigMgr doesn't care as long as the traffic gets to the site system hosting the roles. The main difference will be with the
    certificates used by each component. With bridging, the F5 will terminate the SSL traffic and then initiate a new SSL stream to the site system.
    This is all pretty transparent to ConfigMgr and the client as long as the certs used are configured with the proper SANs and the F5 properly passes the traffic along.
    I don't think Network team would allow 'pass-through' and would go for 'bridging' option. Can you please let me know the steps I need to follow to configure bridging in-between F5 Balancers and SCCM site system server...bottom line is...our SCCM clients
    should be able to communicate to our site server to get the MP, SUP and DP service. I'm not clear with the statement I underlined in above para.
    Is using a third-party product like an F5 supported by Microsoft. No not explicitly. They rarely support anyone else's technology. Is the scenario in general supported? Yes, however Microsoft only provides guidance for doing so in conjunction with TMG/ISA.
    If you search the web for "internet based client management bridge" you'll get lots of hits. Most (if not all) will be for ConfigMgr 2007 but they are still applicable.
    Not able to find much fruitful data... Can you please provide me with good links which would help me clear this technically.
    Now, if your F5 is set to pass-through, then there's not much extra to do at all assuming the traffic is routed properly
    THANKS AGAIN for your help in this regard.
    Sam

  • Setting up Load Balancing for 11i for Intranet & Internet Access

    Our current environment for 11i (11.5.5) is accessed only internally (via Intranet). We need to allow outside access (via Internet) also for self-service apps (ie. HR). Oracle Support/Metalink has stated that Load Balancing (note 148155.1) is the only supported method to have multiple (Apps Servers) systems access a single database. Could I get feedback from anyone who has implemented Load Balancing for 11i? Additionally if someone has implemented this for both intranet and internet access how has your company setup? Do the secondary server(s) from the Load Balancing note reside in the DMZ? And thus the primary app server and database reside inside the firewall? Thanks....

    Hi,
    We are using 6 middle tiers for internal access for intranet access and 2 middle tiers in External DMZ with only web server running for Extrenal Access over Internet for Self Service.
    You Implement one Load Balancer for first 6 internal Middle Tiers with site level profiles pointing to Internal .
    You implement second Load balancer for external 2 middle tiers with server level profile options for these two servers pointing to External Load balancer .
    To check how to implement load balancer vsiit
    http://becomeappsdba.blogspot.com/2006/09/configure-hardware-load-balancer-at.html
    Wait for my next post in above blog site with step by step procedure to implement above solution External & Internal one
    Atul Kumar
    Oracle Apps DBA
    http://teachmeoracle.com

  • Load Balancing 11i for both Intranet & Internet Access

    Our current environment for 11i (11.5.5) is accessed only internally (via Intranet). We need to allow outside access (via Internet) also for self-service apps (ie. HR). Oracle Support/Metalink has stated that Load Balancing (note 148155.1) is the only supported method to have multiple (Apps Servers) systems access a single database. Could I get feedback from anyone who has implemented Load Balancing for 11i? Additionally if someone has implemented this for both intranet and internet access how has your company setup? Do the secondary server(s) from the Load Balancing note reside in the DMZ? And thus the primary app server and database reside inside the firewall? Thanks....

    Hi,
    We are using 6 middle tiers for internal access for intranet access and 2 middle tiers in External DMZ with only web server running for Extrenal Access over Internet for Self Service.
    You Implement one Load Balancer for first 6 internal Middle Tiers with site level profiles pointing to Internal .
    You implement second Load balancer for external 2 middle tiers with server level profile options for these two servers pointing to External Load balancer .
    To check how to implement load balancer vsiit
    http://becomeappsdba.blogspot.com/2006/09/configure-hardware-load-balancer-at.html
    Wait for my next post in above blog site with step by step procedure to implement above solution External & Internal one
    Atul Kumar
    Oracle Apps DBA
    http://teachmeoracle.com

  • Load balancing across multiple paths to Internet

    Hello,
    I have a 2821 router. Currently, I have two bonded T-1 circuits to the Internet.
    I would like to add a DSL circuit to augment the T1s. I would also like to load balance across all of the circuits. Currently, IOS performs inherent load balancing for the T1 circuits. The DSL circuit is from a different provider than the T1s.
    The T1s are coming from a local ISP that runs no routing protocols within their infrastructure. (They run static routes and rely on the upstream provider for BGP.) The DSL provider is a national telecom carrier.
    What is the best way to perform load balancing for this scenario?

    Here is the answer (sort of) for anyone reading this post with the same question:
    No matter which way I choose to do it, the trick is to have the local ISP subnet advertised via BGP through both pipes. The national telecom DSL provider will not advertise a /20 subnet down a DSL pipe. (Ahh, why not? =:)
    Had the secondary pipe been a T-1,T-3, or other traditional pipe, I could have used a load balancer like a BigIP, or FatPipe device or possibly CEF within the IOS.
    Case closed. Thanks to everyone that took a look.
    Doug.

  • Internet Load Balancing - Routing Issue

    Dear all, good day...
    in our ministry we are going to contract with 2 ISPs to provide us with the internet service (one of them will be the main line 16 MB, and the other line will be working as a backup line). Now, here is my question, is there any router that can holds the 2 ISPs lines at the same time and have the fail over property and load balancing, or i have to use 2 different routers (we have CISCO 2821) to do the load balancing between the 2 internet lines. Thankx

    Hi Tareq
    There are many ways you can do.But depending on your requirement.If you are using 2 ISPs and all of ISPs are willing to do BGP then that is the right way you should do. For doing load-sharing.please check this link out.
    http://www.cisco.com/en/US/tech/tk365/technologies_configuration_example09186a00800945bf.shtml
    Just my thought.In case one of your ISPs can't do BGP then you can use the policy-based routing feature to do out-bound load-sharing(inside to ISPs) by classifying traffics you want.
    Try to understand technology first.
    http://www.cisco.com/en/US/products/ps6599/products_white_paper09186a00800a4409.shtml
    Hope this helps
    Thot

  • PIX Redundant Internet Line and Load balancing

    I would like to find out if it's possible to configure my Cisco PIX 525 to use a secondary internet line from a different provider and perform load balancing. I'm using PIX Version 6.3(1)

    PIX version 6.3 does not support Redundancy and load balancing. but PIX/ ASA with version 7.0 supports Redundancy.

  • Load Balance & redundancy for internet from 2 different sites?

    Hi,
    we have 2 core sites where our servers are situated. Both sites are connected via a ptp link.
    All of our clients/sites reach these two sites via our MPLS network and they never route via the ptp link which is solely used between the two core sites.
    One of the sites has an ASA which goes out to our internet. We are thinking of replicating this on our other site.
    How would we go about load balancing the internet connection ie 50% go out on site A & 50% go out on site B?
    And if site A goes down, everything goes out via site B and vice versa?
    Diagram attached....
    Thank you,
    Louis

    Hi Louis, you could set default routes on the ASA's with tracking, and use ospf downstream to inject the default route in to the network with default information originate - this will only advertise out a default route if it has it in the routing table. With SLA you can track internet reachability by IP SLA echo to something like 8.8.8.8. Both sides can advertise this in to the network, if one goes then there is one left. Just be mindful of the policies and NAT required, you will have to duplicate the rules on the ASA's. With the NAT you have to ensure, that outgoing traffic comes back in the same path it left so it doesn't break connections.

  • Load Balance unequal internet connections

    We have a single site customer with a 2821 router with a T1 internet connection. They recently added another internet connection which is a wireless broadband connection with 2Mbps/1Mbps rates. My goal is to be able to utilize both internet connections to load balance the traffic as well as using the T1 as the primary and the wireless as secondary if the T1 goes down. We have a NAT pool setup and some static translations on the T1 addresses for things like the internal mail server, VPN, etc. What are some of the things to be cautious about when trying to set this up?
    Thanks,
    Kevin

    Kevin
    There are several things to be cautious about in the situation that you describe. One is the possible impact of assymetric paths. This occurs when data goes out over one connection and the response comes back over the other connection. Another possible issue is whether the translations that you are doing for traffic out the T1 would also work for the secondary connection or whether different translations are called for.
    HTH
    Rick

Maybe you are looking for