I''m going to try to be as detailed as possible. We have two areas so to speak, the internet, and the datacenter. I will refer to the routers and fw's as i for the internet side and d for the datacenter side.
The datacenter spans ALL of the continental US for arguments sake.
There are 3 peering points between internet and DC, ebgp, each with a firewall. Here is the layout and locations:
New York iRouter <-> eBGP <-> dRouter
Philadelphia iRouter <-> eBGP <-> dRouter
Denver iRouter <-> eBGP <-> dRouter
I would like to design this scenario so that the Datacenter advertises the 10.10.0.0/14 network out all 3 peers, and when traffic either enters or leaves, that its 100% symmetrical.
The iNet would advertise a default route down all 3 peers as well.
So in essence, if one peer were to go down, or even two, the entire DC still can get out. At the same time, we cannot have asymmetrical routing. I'm thinking routing would be based on location, both for gear talking out to the internet, or whatever gear in the internet would have to talk to the DC.
What is the best BGP algorithm to have this happen and are there any pitfalls in this design?
Thanks all.
No comments:
Post a Comment