Diagram: https://snag.gy/2CRojL.jpg
We have two locations and would like to use the local ISP towards the internet in each location. So the plan is to NAT anything that goes out from the city 1 to 192.0.2.0/24 and everything from city 2 to 198.51.100.0/24. This way the return traffic would also come back correctly, hopefully. We would advertise the routes to our two ISPs with AS path set accordingly. And if one ISP fails, the traffic gets routed between our internet routers and everything is fine.
How do you see this design? We would also NAT all the servers going out to this subnet, maybe have /26 for users and /26 for server NATs per location. Plan is also to have all the web traffic from internet to our servers going to the load balancers first, so we'd slice a /25 for those from each city's block. We'd also duplicate the LB config and use NAT towards the inside network so that it wouldn't matter much if we had to fail over the connection.
Any ideas? Thanks!
No comments:
Post a Comment