Open Shortest Path First (OSPF) is an interior gateway protocol that multicasts the routing information to all the hosts within a single network. It sends routing information to all the routers in the network by calculating the shortest path to each router on the basis of the structure built up by each router.

To configure OSPF with IPsec VPN to achieve network redundancy using the CLI: Configure the WAN interface and static route. Each FortiGate has two WAN interfaces connected to different ISPs. The ISP1 link is for the primary FortiGate and the IPS2 link is for the secondary FortiGate. Personally, It sounds like GLBP is the best because it combines the redundancy that HSRP & VRRP provide, while providing actual load-balancing. Oddly, I’ve read/seen HSRP used much more frequently than GLBP; do you think this is simply because more people are familiar with HSRP/ Cisco pushes it harder or is there a legitimate design reason? I wanted to assign a higher metric to one of the links in OSPF on the EX4200 switches to have OSPF prefer one of the other, something like this: protocols {ospf {area 0.0.0.0 {interface ge-0/0/0.0 {metric 10;} interface ge-0/0/1.0 {metric 20;}}}} Can someone confirm (or deny) if this will work? Any help would be greatly appreciated! Thanks, spencer By eliminating loops, STP prevents unwanted broadcast radiation. STP still allows for redundancy by automatically finding an alternate path if a link fails. Dynamic Routing Protocols: RIP, OSPF, and BGP. The larger the network, the more complex. Your setup will require OSPF area 0 between BR1-CR1, BR2-CR2 and CR1-CR2. No ospf between BR1-BR2 only IBGP exchanging active BGP prefixes to each other with Next-hop self. You would require to reditribute only BGP learnd default route at BR1 in to OSPF and Same at BR2. This will give you redundancy at both level link as well as node. -OSPF -BGP • ECMP only works for routes that are sourced by the same routing protocol (i.e: Static Route, OSPF or BGP). • ECMP is enabled by default with 10 paths. • ECMP with static routes is effective if the routes are configured with the same distance and same priority. ECMP Distribution algorithm: Link redundancy will be solved by specifying uplink priorities. When the primary link loses connectivity, the secondary wired link will activate the link to the second ISP and the IPSec tunnels can be reestablished through the internet. The following configuration snippet will set up IPSec tunnels and OSPF adjacencies from the remote office.

Personally, It sounds like GLBP is the best because it combines the redundancy that HSRP & VRRP provide, while providing actual load-balancing. Oddly, I’ve read/seen HSRP used much more frequently than GLBP; do you think this is simply because more people are familiar with HSRP/ Cisco pushes it harder or is there a legitimate design reason?

OSPF is a routing protocol and through some engineering can provide different fail over mechanisms for your routed network, i.e. your gateway could have two ospf routes to decide which circuit will be used outbound. OSPF with IPsec VPN for network redundancy. This is a sample configuration of using OSPF with IPsec VPN to set up network redundancy. Route selection is based on OSPF cost calculation. You can configure ECMP or primary/secondary routes by adjusting OSPF path cost. Because the GUI can only complete part of the configuration, we recommend using

OSPF is enabled (L3 switch) in (Site A), so all networks of (site A) will be advertised and see all other sites through MPLS. >>>> No issues and works like a charm! Case 2: (Failover to Firewall) In case of P2P is down, OSPF will not take an effect and traffic from Site A to Sites B, C, and D will go through Firewall, Site X will not be visible

US20030056138A1 US09/934,884 US93488401A US2003056138A1 US 20030056138 A1 US20030056138 A1 US 20030056138A1 US 93488401 A US93488401 A US 93488401A US 2003056138 A1 US2003056138 A