Router Clustering!

Unanswered Question
Apr 29th, 2007
User Badges:


As we know the Cisco PIX/ASA firewalls have the stateful failover feature.Which allow the active the vpn ,http sessions being up during the failover.

I am interested in whether Cisco Routers have the similar feature? . Can i keep the active vpn, nat sessions on different router through the clustering or somehow redundancy.

p.s. Please don't offer the HSRP ;). It is just for redundancy of L3 connections.I need the stateful redundancy


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
rajbhatt Sun, 04/29/2007 - 23:06
User Badges:

Hi Leo,

Here 's a link for stateful failover :

But u dont want the HSRP :-(

Even for nat we have the same process :

This document says that tables are replicated

But I think it is similar to ASA while duplication http relication and all the steful information to the standby device

Are u looking for failover interface or something like SLA monitor?


Leo_Stobbe Mon, 04/30/2007 - 00:20
User Badges:

Hi Raj,

Very good link for stateful vpn! Should be tested!

No i didn't want HSRP, because of its purpose. As i needed not just redundancy, i asked not to suggest the HSRP. But conjunction HSRP with SSO seems to be solution for me.


Leo_Stobbe Mon, 05/07/2007 - 04:13
User Badges:


I have Cisco 7204 VXR with NPE-400, and advanced ip services.

As i understood if i want to make Stateful Failover for IPSec, the only requirments for second box is advanced ip services IOS? that is all.


Leo_Stobbe Mon, 04/30/2007 - 04:32
User Badges:

Hi Raj,

In this case i think the only requirements is having the same IOS,no matter which kind of boxes you gonna use.

Correct me, if i am wrong



This Discussion