Forum Discussion
NimbostratusISP/Route redundancy with HA setup
Hi,
I am trying to setup a HA Network setup with 2x i4000 series. I will be using 2x Routers that have individual ISP links out from them.
My concern is if there was an issue with the ISP connection or physical issue between the router and ISP, with vlan or gateway fail-safe on the BIG-IP it will only failover when the primary i4000 doesn't get a response from the router interface itself. If the router remains up but the ISP/default route is down the BIG-IP will remain in it's current state however will not receive the default route.
Is there a way to monitor routes received via bgp peers to enable failover? I know Cisco use track objects to allow similar failover on their devices.
Thanks,
Nick
3 Replies
RossVermetteCan't you setup a health-monitor to ping or connect to an upstream device that is further up the path your ISP router. (example ping google, or other site)
BigD_300005Cirrostratus
On your two routers setup a FHRP like HSRP or VRRP.
Setup a track statement for reachablitilty on the route 0.0.0.0/0 received via BGP. On the FHRP set a decrement of 20 based on when that track statement is down.
Static route the F5 to the VIP that you assigned for the FHRP and it will always follow who is the active router.
This shouldn't trigger the F5 to failover - but it will make sure your traffic goes to the correct router.
The other solution would be to setup iBGP peers between your routers so they always share a default route. Would need to use a route-map to make sure you prefer a specific ISP.
Nick-J-H_313176Thanks for the advice, our setups are going to be geo-resilient so it makes FHRP difficult on the Routers. We will also have a BGP enabled F/W's between the routers and BIG-IPs.
