You didn't say what the problem you are trying to fix is.? Its is a real
problem that happens (like a router failing) or a theoretical problem
like 'we must makesure if this ISP fails, we can still connect`
It is very easy to replace one point of failure (an ISP) with another
point of failure (one router), but along the way convert a simple
network into a complicated network.? So think really carefully.
On 26/11/2021 09:06, pieter@towel42.nl wrote:
>
>
> As a primary issue, is something like scenario 1 (two routers
> connected via two ports/paths) possible using OSPF (or another routing
> protocol)?
This is the kind of thing you can do with OSPF.
The downside is that OSPF is not instant at detecting a failed link.? If
the ethernet link drops, then you know it is dead.? If an IPsec pseudo
wire just stops forwarding, then it could be a few minutes before a
problem is detected.
Equally, if they are really just plain ethernet cables you could use
static routes, and just detect that the link is down??? But I suspect
you actually have a lot of IPsec tunnel between devices.
Frr (fork of quagga) does have a proposed feature to allow BFD on static
routes.?? It isn't ready yet, see
https://github.com/FRRouting/frr/pull/7101??? But something like this
would allow just a simple routing table, and a detection that a link is
up from end to end.
BFD is bidirectional forwarding detection - a way to check 2 IP hosts
have connectivity between each other and detect a failure really quickly.
I think you could also use BGP + BFD just a easily as using OSPF.
*****
You could also have a look at
https://www.tinc-vpn.org/????? It's a VPN
but also has routing engine, and so is able to keep up a mesh if a node
fails.
> As a secondary issue, is something like scenario 2 (two routers
> connected via one port on one side, two ports on the other side, two
> paths) possible using OSPF (or another routing protocol)?
I'm not sure what you mean here.? The connections could come into a
router via a network switch?? So you get 2 connections on 2 vlans into
the same port.? That is ok.? But the switch is something else to break,
and so leaves you a single point of failure.
_______________________________________________
Quagga-users mailing list
Quagga-users@lists.quagga.net
https://lists.quagga.net/mailman/listinfo/quagga-users