Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1885
Views
0
Helpful
2
Replies

Redundant IPSEC Tunnels - ASA 5505 to ASA 5520

scondon
Level 1
Level 1

‎09-25-2007 11:12 AM - edited ‎02-21-2020 01:41 AM

I have a remote VPN location that I'm trying to provide a redundant connectivity solution for, here's my scenario:

Tampa has 2 separate ISP connections terminating into an ASA 5505. Philadelphia has a high speed connection terminating into an ASA 5520 cluster. I have successfully configured the backup route as described in "ASA/PIX 7.x Redundant or Backup ISP Links Configuration Example" to allow access to the secondary route when the primary fails. When this happens, I can get out to the Internet but I can't get the IPSEC traffic working over the secondary link.

My question is this: Can the ASA 5505 have 2 seperate IKE and IPSEC sessions to the ASA at the headend? If so, how is this configured?

0 Helpful
2 Replies 2

andy.mueller
Level 1
Level 1

‎09-26-2007 01:11 PM

Maybe this will help. Look at this document.

PIX/ASA 7.x: Simple PIX-to-PIX VPN Tunnel Configuration Example

In it is a section called Backup Site-to-Site Tunnel.

Good luck!

Andy

0 Helpful

andy.mueller
Level 1
Level 1

‎09-26-2007 01:16 PM

Maybe this will help. Look at this document.

PIX/ASA 7.x: Simple PIX-to-PIX VPN Tunnel Configuration Example

In it is a section called Backup Site-to-Site Tunnel.

Good luck!

Andy

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card