Multiple VPN profile to same destination

Unanswered Question
Oct 17th, 2008

I wanted to have a automatic switchover of vpn when one my ISP fails. Currently I have 2 ISP's, only one ISP's IP address is configured on cisco pix outside interface which is connected to the remote peer L2L. now if this ISP fails, I will be manually configuring the IP address of 2nd ISP & will me the vpn tunnel up & running, which means on my remote peer vpn device, I have configured 2 vpn profiles to connect my cisco pix, but only one vpn will be active which is based on the ip address I configured on the cisco pix outside interface. Is there any configuration which will allow me to do this automatic switch over?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Richard Burts Mon, 10/20/2008 - 13:20


If I am understanding correctly your explanation then the solution is that on the remote peer you should not have two profiles but should have a single profile and in that profile there should be 2 peer statements. The remote peer will initiate a session with the first peer and if that peer fails the remote will initiate a session with the second peer.



Anand Narayana Tue, 10/21/2008 - 03:50

Thanks for the information, but in that case, do I need to configure the other ISP address on the outside interface isn't?


This Discussion