multi-ISP VPN tunnel

Unanswered Question
Jan 9th, 2009

Sourece :I have 2 routers to 2 ISP's (Internet) connecting to 1 ASA (LAN).

Dest: 1 ISP Internet and pix506e. Want to build a tunnel form source to Dest, even if 1 ISP is down @ source.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
royalblues Fri, 01/09/2009 - 04:45

Do you own the public LAN subnet between the router and the ASA?

If yes, then the failover will happen as long as there is connectivity between the peers


daredevil24 Fri, 01/09/2009 - 04:59

till router (internet interface) I own the IP address and configuration

royalblues Fri, 01/09/2009 - 05:05

Then all you need to do is to make sure that you LAN pool is being advertised to and accepted by both the carriers.

When one ISP goes down, the tunnel IP would be reachable from the other ISP


daredevil24 Fri, 01/09/2009 - 05:30

my idea is to share the traffic( VPN & internet) across ISP. if possible suggest me the configuration.

patrickvanham Fri, 01/09/2009 - 05:57

If you want to loadshare you would need one tunnel across each ISP and use a dynamic routing protocol across the tunnels in case of failure of one of the ISP's. Loadsharing could also be done via the routing protocol.

daredevil24 Sun, 01/11/2009 - 22:24

I am looking for the config and getting strucked up while configuring.


This Discussion