Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
479
Views
15
Helpful
7
Replies

Wan,VPN, Multiple Routes

jgadbois
Level 1
Level 1

‎10-25-2009 03:20 PM - edited ‎03-04-2019 06:29 AM

This, I guess, is a basic design question. I have a T1 between my main location and a remote location. I also have Internet connections at both locations with firewalls. Both locations have routers behind the firewalls that interface the T1 and the Internet (via the firewalls).

My question is: what is the best way to send all traffic over the VPN connection until that is not available and then switch to the T1? Will OSPF make those descisions, should I be testing the connection with something like RTR, should I be using MPLS?

Labels:
0 Helpful
7 Replies 7

Edison Ortiz
Hall of Fame
Hall of Fame

‎10-25-2009 04:22 PM

James,

I recommend using a dynamic routing protocol such as OSPF. You will need a GRE tunnel to carry the OSPF and on the tunnel you can apply an OSPF cost lower than the T1's, so it can be preferred.

Regards

Edison.

jgadbois
Level 1
Level 1
In response to Edison Ortiz

‎10-25-2009 04:30 PM

Edison,

Great post! You wouldn't know of a config example for me to look at, would you? I'm currently using OSPF in the network. Would this work if the Internet goes down?

0 Helpful

Edison Ortiz
Hall of Fame
Hall of Fame
In response to jgadbois

‎10-25-2009 05:10 PM

James,

if you build the GRE tunnel at each end with the source and destination being the IP address used for the internet, then the GRE tunnel will go down hence the OSPF adjancency.

Once the OSPF adjancency via the tunnel goes down, the router will only have one path left - the T1.

Here is a sample config with GRE protected tunnel with OSPF.

The T1 is not part of this sample but having the T1 interface with a higher OSPF cost - it's all you need.

Regards,

Edison.

jgadbois
Level 1
Level 1
In response to Edison Ortiz

‎10-25-2009 06:33 PM

Edison,

Thanks for your reply. I didn't get the sample. Can you resend?

0 Helpful

Edison Ortiz
Hall of Fame
Hall of Fame
In response to jgadbois

‎10-25-2009 07:28 PM

My apologies, I thought I included the URL on my previous reply, here it is:

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800a43f6.shtml

Regards

Edison.

jgadbois
Level 1
Level 1
In response to Edison Ortiz

‎10-26-2009 08:58 AM

Edison,

Thanks again for your help! I going to start working on this right now. Again, thanks!

0 Helpful

Amin Shaikh
Level 1
Level 1
In response to jgadbois

‎10-26-2009 09:26 AM

Hi Edison, I have question on the same topic but with some addition.

I have gone through the link but still get how to overcome on this scenario.

Site_A-----------Site_B

I have IPSEC over GRE between Site_A and Site_B, in all there are 3 Tunnels between them.

Site_A has only one Service Provider

Site_B has Three Service Provider, each Tunnel going to Site_A is with different Service Provider.

Tunnel #1 works great when other tunnels are manually shutdown and it has static entry pointing to remote public IP.

Tunnel #2 doesnt work even if other tunnels are down ; same with Tunnel#3

I wanted to make all tunnels workings and have load balancing or let tunnel work in redunduncy scenario.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card