So I'm trying to work out a solution for ospf in my environment. It's government work, so as always it is a little strange. I have a firewall running as my default gateway. Down below I have about 30 virtual routers in front of different clouds.
I want my firewall to have ospf relationship with every router, easy. But I also don't want any of those routers to neighbor with eachother and route directly to eachother. Essentially I don't want anything to leave those without hitting the firewall first.
Now I could setup a different area with each router, but that seems like a very crappy way to go forward. It seems possible to do BGP, but that seems also like a very imperfect solution.
As far as practical application I'm not great with OSPF so I'm sure there are things I'm missing. Is there are better solution for this? Thanks!
No comments:
Post a Comment