Hello.
I am working with BT to replace an existing 100Mbps circuit with 2 new 100Mbps failover circuits for redundancy. I have been using UTMs for some time now but am fairly new to BGP.
The new circuits are installed and I have both configured with a test UTM. I've managed to setup the BGP Neighbors and can ping in and out on both subnets (each circuit has a /30 subnet assigned). This all seems to be working.
However, I'm failing in my attempts to use an additional /29 subnet for internal servers. I have added them as additional addresses, and configured NAT rules, and announced them via BGP. This works great, I can access a test web server and FTP server externally no problem.
The problem I have is when I pull the cable for the primary circuit to test failover. After that I can no longer access any addresses in the /29 subnet. It's probably because the IP can only be assigned to one interface, which now has no connection. Also, outbound traffic fails - possibly because only one interface can have a default gateway?
Have I missed something simple? Is there a way to have these extra IPs accessible on either interface? Or should I enable something like link aggregation, or uplink balancing?
My goal is to have my internal servers available on these additional IPs, without any manual intervention, if either circuit fails.
Thanks for any help you can offer. I'm using version 9.702-1. More information or screenshots can be provided.
This thread was automatically locked due to age.
