VPN Failover with Dual ISP to Same Site

Unanswered Question
Oct 8th, 2007
User Badges:

We have Cisco 2651 Routers with several remote sites. We would like to have VPN failover to these sites using VPN Tunnels from different ISP going to the same site. Failover is the primary concern but load balancing would be an added benefit.

I read the writeup that Cisco has for what they have done for Ann Taylor retailer but would like to have more information.

Any input regarding this would be greatly appreciated.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
zentner Thu, 10/18/2007 - 06:11
User Badges:


I'm also searching for a solution similar to you. A customer of us wants to connect his remote site in a foreign country to his central site. On both sites there are 2 ISP connections. Fail-over is a must for the setup but load balancing would be great. Do you have a suggestion regarding the hardware which is reasonable for such a setup?

Can you send me link regarding the writeup you mentioned?

attrgautam Thu, 10/18/2007 - 08:27
User Badges:
  • Silver, 250 points or more

The best way to design this network across will be to use Dead peer detection on the spokes and use Reverse Route injection on the hub to detect on which ISP/Router the connection was made. With DPD/RRI you can acheive both load balancing and failover..Alternatively you can look at DMVPN at all sites to the hub routers (2 different DMVPN tunnels to each hub router) and perform load balancing as well.

Let me know if this helps

ajay_dand Fri, 11/16/2007 - 02:38
User Badges:


I am looking at a similar situation. Would it be possible to include some test configs, so that the whole issue can be clearly understood? ALternatively, if you can point to a URL which explains this in further detail, it would be greatly appreciated. Thanks in advance.



This Discussion