Hi Guys,
Needing your help and recommendation. I possess two ISPs, each offering a /28 public IP range. Presently, I employ source NAT to translate private IPs to public IPs. Both R1 and R2 are linked via a direct leased line. I aim to establish failover capability, ensuring that in the event of ISP1 failure, traffic seamlessly switches to ISP2. However, a challenge arises: my private IPs in R1 undergo NAT using source NAT, rather than masquerade. Is it necessary for me to convert all source NAT configurations to masquerade in order to facilitate seamless NAT of private IPs in R1 to ISP2 in R2 and vice versa? Thanks in advance.
It ain’t seamless.
Your public IP changes.
There is the time it takes to, 1. Recognize that main is down. 2. Sever dead connections. 3. Establish New Connection
“Seamless” requires something else somewhere in the line.
Using masquerade, at least my understanding, does a better job of flushing old connections ?
/IP firewall connection remove [find]