Networks

General discussion

Gravatar
0 Votes
Locked

Network Routing

By heybahler ·
I'm in the process of migrating from a mix of Frame Relay and VPN to Sprint MPLS. I have
3 locations, each location is to have a Cisco 2801 router for MPLS connection and internet
access via DSL through NetScreen FireWalls. Users (via telnet sessions) and network
printers in each location access a Business Application server in HQ via the MPLS on the
2801's. I estimate users have more traffic (2 to 1) to the internet than to business application.

Lan1 NE Lan2 MO Lan3 IL
Admin HQ Branch2 Branch3
30 users 12 users 5 users
512 MPLS 256 MPLS 256 MPLS
Qwest ADSL SBC ADSL SBC ADSL
768-1.5 768-1.5 768-1.5
Server for Bus app (HPUX)

I currently have my Firewall acting as DHCP Server, should I move this to the 2801's as well?

What would it take to switch (manually) routes to VPNs as back up to MPLS?

Donb

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

gravatar
Collapse -

by mshavrov In reply to Network Routing

How do you have your devices connected? Do you have a switch, where you have all your users, and you have Cisco 2801 and NetScreen?

First, let talk about routing. You have three ways to do this:

1. Your Cisco 2801 works as the default gateway for your PCs, and it determins, if it's "office-to-office" traffic, it sends it to a MPLS, and if it's an Internet traffic, it sends it to the NetScreen firewall.

2. You have separate static routing on your PCs - default route to the NetScreen Firewall, and "office-to-office" traffic goes to Cisco 2801 router.

3. Your PCs default gateway is NetScreen, and if it's "office-to-office" traffic, it goes to the Cisco 2801 (but this scenario may not work because of NetScreen features).

If your DHCP works fine with the NetScreen firewall, there is no need to move it to the Cisco 2801 router. It's possible to move it, but not needed.

Switching between MPLS and VPN should be easy with the Scenario 1 - you just change routing in the Cisco 2801 router. But you have to realize, that if you change one site, you have to change all others. With the Scenario 2 it's also possible, but is more complex, since you need to change a routing in every PC.

Good luck,

Michael
CCNP, CCDP, CCSP, Security+, MCSE W2K, MCSE+I, etc.
http://www.ciscoheadsetadapter.com

Back to Networks Forum

Start or search

Related Discussions

Related Forums