10-25-2009 03:20 PM - edited 03-04-2019 06:29 AM
This, I guess, is a basic design question. I have a T1 between my main location and a remote location. I also have Internet connections at both locations with firewalls. Both locations have routers behind the firewalls that interface the T1 and the Internet (via the firewalls).
My question is: what is the best way to send all traffic over the VPN connection until that is not available and then switch to the T1? Will OSPF make those descisions, should I be testing the connection with something like RTR, should I be using MPLS?
10-25-2009 04:22 PM
James,
I recommend using a dynamic routing protocol such as OSPF. You will need a GRE tunnel to carry the OSPF and on the tunnel you can apply an OSPF cost lower than the T1's, so it can be preferred.
Regards
Edison.
10-25-2009 04:30 PM
Edison,
Great post! You wouldn't know of a config example for me to look at, would you? I'm currently using OSPF in the network. Would this work if the Internet goes down?
10-25-2009 05:10 PM
James,
if you build the GRE tunnel at each end with the source and destination being the IP address used for the internet, then the GRE tunnel will go down hence the OSPF adjancency.
Once the OSPF adjancency via the tunnel goes down, the router will only have one path left - the T1.
Here is a sample config with GRE protected tunnel with OSPF.
The T1 is not part of this sample but having the T1 interface with a higher OSPF cost - it's all you need.
Regards,
Edison.
10-25-2009 06:33 PM
Edison,
Thanks for your reply. I didn't get the sample. Can you resend?
10-25-2009 07:28 PM
My apologies, I thought I included the URL on my previous reply, here it is:
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800a43f6.shtml
Regards
Edison.
10-26-2009 08:58 AM
Edison,
Thanks again for your help! I going to start working on this right now. Again, thanks!
10-26-2009 09:26 AM
Hi Edison, I have question on the same topic but with some addition.
I have gone through the link but still get how to overcome on this scenario.
Site_A-----------Site_B
I have IPSEC over GRE between Site_A and Site_B, in all there are 3 Tunnels between them.
Site_A has only one Service Provider
Site_B has Three Service Provider, each Tunnel going to Site_A is with different Service Provider.
Tunnel #1 works great when other tunnels are manually shutdown and it has static entry pointing to remote public IP.
Tunnel #2 doesnt work even if other tunnels are down ; same with Tunnel#3
I wanted to make all tunnels workings and have load balancing or let tunnel work in redunduncy scenario.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: