12-18-2015 06:23 AM
I'm running into an argument with our carrier for our 2 ISP links that I need to clarify.
We currently have two 3050's with 2 ISP links coming into both devices in an Active/Passive configuration using PBR's to route traffic. We are adding a third ISP and dropping the slowest link, followed by implementing a BGP configuration with both ISP's.
Now I was all gungho to move forward with our current Active/Passive setup by adding BGP peering and now our carrier is telling us we cannot do that because it could cause a broadcast storm. I'm being told that flipping between the Active/Passive firewalls could cause a flood because 1 IP address for 2 MAC addresses is bad practice. Maybe I'm not understanding this well, but I thought active/passive is like literally unplugging a switch port and moving it.
Our carrier wants us to move to Active/Active with 2 IP addresses per ISP; one for each PAN-3050 peer.
I really do not see the purpose of moving to Active/Active as each PAN would then have an active BGP peer at a time, so anytime I perform maintence I would be bringing down one of the peers. In our environment Active/Passive fits in great with our maintenance plans.
Any extra information on BGP experiences would be greatly appreciated.
