An Engineer's Guide to Configuring the ASR 1000 Series Router
We've highlighted the ASR 1000 series router so we wanted to share a step-by-step configuration for Box-to-Box NAT High-Availability (B2B NAT HA) on Cisco IOS-XE devices, such as the Cisco ASR. This is a very useful feature to provide a network in High Availability.
A Quick NAT Overview
Cisco's Network Address Translation (NAT) Box-to-Box High-Availability Support feature enables network-wide protection by making an IP network resilient to potential link and router failures at the Network Address Translation (NAT) border. It also leverages services provided by the redundancy group (RG) infrastructure present on the device to implement the high-availability functionality.
Redundancy Groups (RG)
The RG infrastructure defines multiple RGs to which applications can subscribe to, and function in, an active-standby mode across different devices. In an RG, only one peer is in active mode at a given instance, and the other peer is in standby mode. NAT box-to-box high-availability functionality is achieved when you configure two NAT translators, residing across different devices, to an RG and function as a translation group.
If you run into any issues, have trouble configuring the ASR 1000 series router, or simply need an extra set of hands to help in the configuration, we have a team ready to step in to configure your network through our SmartHands offering.
Configure
B2BHA Failover Triggers
Some of the common failover triggers are:
- Power loss/reload (this includes crashes) on the active.
- Reload of Embedded Service Processor (ESP) (either planned or unplanned).
- Control interface for Redundancy Group (RG) is shutdown/linked down.
- Data interface for RG is shutdown/link down.
- Tracked Object Failure (IP Service Level Agreement).
- Protocol keep-alive failure.
- The run-time priority of the active goes down below that of the threshold configured.
- The run-time priority of the active goes down below that of the standby.
Basic L2/L3 Connectivity
We can divide configuration into two major parts. The first part is the basic configuration that enables RG, redundancy protocol, timers, control, and data interfaces in the router. The second part relates to the actual data/traffic interfaces, and its association with RG.
This example tries to achieve B2B NAT HA on the ASR with the far-end server 192.168.5.5 from the LAN 172.16.1.4. These configurations are prepared with STATIC NAT configuration at the moment.
Note: Both the ASRs should be able to reach the public IP address provided by the ISP.
The LAN Facing interface is connected to the distribution switches, which are in turn connected to the hosts.
The ISP Facing interface has this configuration:
The Data and the Control interfaces between the ASRs have been configured as shown in these sections.
Control Interface
Now, let’s configure control interfaces, as shown below:
Data Interface
To wrap up, configure data interfaces on both routers, as shown below:
About PivIT Global
PivIT Global provides the support you need through infrastructure, maintenance, and professional services. Contact us today to chat more about the ASR 1000 series, its configuration, or how we can support you through our third-party maintenance and professional services offerings.