Cisco ASA with Dual ISP and VPN

Unanswered Question
May 22nd, 2009
User Badges:

I have two sites. Both sites are using ASA firewalls. Both site connect to each other via l2l VPN tunnel. One of the sites has a dual isp configuration with WAN failover. Can I configure that ASA to re-establish the VPN connection in a failure situation?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Farrukh Haroon Sun, 05/24/2009 - 05:44
User Badges:
  • Red, 2250 points or more

Do you have any provider independant address space or not?


Alternatively you could set two peer statements (in the crypto map) on the single isp link site, if one ISP goes down, the other should still be reachable.


Regards


Farrukh

timothy.lewis Sun, 05/24/2009 - 15:54
User Badges:

No the addresses are specified by the ISPs. I have set up the crypto map peer statments and the tunnel-groups with PSK for each public IP.


It does not seem to be working.

Farrukh Haroon Sun, 05/24/2009 - 22:30
User Badges:
  • Red, 2250 points or more

Can you post your configuration?


Regards


Farrukh

Actions

This Discussion