Hi
My ISP in a datacenter offers me 2 uplinks, only 1 is actively sending data, the other is in standby.
Uplink Router A: 1.1.1.252
Uplink Router B: 1.1.1.253
Uplink Virtual GW: 1.1.1.254
If Router A goes down, Router B takes over the virtual IP, so all servers should have the default gateway set: 1.1.1.254
How I have it now:
Uplinks 1 to 5 are switch ports
Router A: uplink A in port 1, external IP 1.1.1.250 set to this port
Router B: uplink B in port 1 external IP 1.1.1.251 set to this port
Router A port 2 connected to Router B port 2, since ports 1-5 are switch ports, this works.
On Router A port 6 I connected the public switch where all the servers are connected to
I setup a bridge with ports 1 and 6 in it,
On Router B port 6 is also connected to the public switch but no bridge is setup, so all traffic always goes over Router A
With the forward chain I do my firewalling on router A. (block IP’s and ports)
when router A fails, I need to activate the bridge and setup firewalling on router B
Is this the correct way, or are there better ways of doing this while still maintaining firewall options