Hi Guys,
I’m currently connected to 2x diferent ISPs and try to protect myself against them blackhole-ing my traffic. I only see 2 options in here:
a. IPSLA probes – composite probe sourced from the P2P /30 IP address conencting to the ISP checking ICMP/HTTP reachablity of hosts located upstream your service provider. Should this probe fail turn off eBGP and let the other ISP route the traffic.
b. Using Pfr – a bit more complex to configure but for me this is the same as option a. but more reliable as because the netflow stats collected by the MC.
I wanted to see what you guys do in regards with this.
Thanks
Alex
PS. I attached a diagram as well for your reference.
New Blog Post: Cisco NetFlow Webinar http://bit.ly/9xnPxK – Sonicwall customers should check this out as well
????????? – Cisco IOS NetFlow – Cisco Systems http://dlvr.it/7mn0B
NetFlow2SQL Collector: NetFlow2SQL Collector can be used to receive NetFlow packets from? http://goo.gl/fb/0ELmC
????????? – Cisco IOS NetFlow – Cisco Systems http://dlvr.it/7mj8p
Netgraph ipfw ? ?????? ???? ??????? ????? netflow – http://unixhome.org.ua/blog/notes/291.html
Cisco NetFlow Beyond 101 – Why Solutions Fail tomorrow 10 http://goo.gl/av5a
Do you do much with ManageEngine stuff? I like their netflow app. They do have some security stuff.
ManageEngine NetFlow Analyzer – A Trip Down the Memory Lane – http://bit.ly/cQgDRl /
Love the Mooby’s shi on your Cat 4500 Flexible Netflow Blog.
Traffic Depot Update PacketDesign Offers TE Explorer with Netflow Analysis http://bit.ly/94Uw4E