Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
313
Views
0
Helpful
1
Replies

Backup VPN Tunnel

joe.gauthier
Level 1
Level 1

‎12-04-2008 11:03 AM

I have two data centers and several remote sites connected via EZVpn. For hardware I have two VPN3000s and 2801 routers in the sites. Is there a way to have a fail over ipsec tunnel so that the sites automaticly connect to the second VPNC? Any help would be awesome. I've been looking for docs from Cisco on VPN failover with no luck as of yet.

Labels:
0 Helpful
1 Reply 1

John Blakley
VIP Alumni
VIP Alumni

‎12-05-2008 06:32 AM

The easiest way is to bring up a tunnel on each router to each VPN concentrator.

On your router, you would have one crypto map that points to multiple peers:

crypt map ACS 5

set peer 1.1.1.1

set peer 1.1.1.2

etc.

If anything happens on your side, VPN concentrator goes down, then traffic wouldn't be disrupted because the tunnel on the clients end would roll over to the other concentrator.

HTH,

John

HTH, John *** Please rate all useful posts ***
0 Helpful
Customers Also Viewed These Support Documents