I am running an HPE MSR3044 router. I have a bgp session setup as follows with my ISP with one link between us and I have implemented NAT444 and it has worked well. I've obviously changed the IP addresses below for security purposes in this post.
bgp 65004router-id 22.214.171.124peer 126.96.36.199 as-number 27446peer 188.8.131.52 as-number 27446#address-family ipv4 unicastdampeningnetwork 184.108.40.206 255.255.255.0network 220.127.116.11 255.255.255.0peer 18.104.22.168 enablepeer 22.214.171.124 enable
The port where I have the link to my ISP is configured as follows:
interface GigabitEthernet5/3port link-mode routeip address 126.96.36.199 255.255.255.248nat outbound port-preserved disablenat outbound port-block-group 1nat outbound port-block-group 2
Now for my problem. I have been allocated a 2nd port between myself and my ISP for additional bandwidth. I have added the new meeting point into my BGP session and I can successfully send traffic over both ports between us. However, I am having intermittent NAT and connectivity issues with this setup. My new BGP setup with both sets of peers is as follows:
bgp 65004router-id 188.8.131.52peer 184.108.40.206 as-number 27446peer 220.127.116.11 as-number 27446peer 18.104.22.168 as-number 27446peer 22.214.171.124 as-number 27446#address-family ipv4 unicastdampeningbalance 2network 126.96.36.199 255.255.255.0network 188.8.131.52 255.255.255.0peer 184.108.40.206 enablepeer 220.127.116.11 enablepeer 18.104.22.168 enablepeer 22.214.171.124 enable
The 2nd interface is configured identical to the first one and is as follows:
interface GigabitEthernet5/2port link-mode routeip address 126.96.36.199 255.255.255.248nat outbound port-preserved disablenat outbound port-block-group 1nat outbound port-block-group 2
I have added the following command to my config but it hasn't helped
nat port-block global-share enable
Ideally I just need for packets from the same source to be routed out a single interface. It appears that packets from a source are traversing both paths and thus having issue with return traffic, especially NAT involved addresses. My ISP has a Cisco router on the other end and it may be something in their configuration but since I'm doing NAT on my end I'm pretty sure I'm missing something in my config. Additionally, it seems that when I do any kind of route aggregation or multi-path setup between us my performance takes a hit instead of improving as one would expect. By performance I mean more packet loss and less bandwidth than with a single port. What am I doing wrong?
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2021 Hewlett Packard Enterprise Development LPAll Rights Reserved.