I have a ASA 5540 (actualy 2 in Active/Standby setup) connected to the Internet and Internaly a DMZ where I get the traffic from my SecureMobile provider.
On remote site I have a Sarian DR6410 router with a ADSL interface and a GPRS/3G int.
I have no problems getting the IPSEC up and running on both interfaces and I'm able to ping from the LAN Internal -> Remote and opposit so long I have a static route in both ends prioritized to send traffic on the same Interface. My intension was to have the 3G/Gprs interface as a failover but I would like it to be done automaticly. I have configured a route in both ends with a best metric using the ADSL (1) and the 3G (255).
What is the best solution ?. Will it be running OSPF between the Sarian and the ASA or could I do something else to solve my problem.
Annother question is, will the ASA could handle around 150 VPN Tunnel's or what is the limitations ?. The tunnels are not heavy loaded.
I'll hope anyone of your experts can help me.