I am looking for a best practice in setting these up to talk to each other. Our 535 core firewall just now is configured for IPSEC VPN's and has been working perfectly for the past 2 years. It is running 7.2 (3) and is managed using CSM although I do have command line experience. We have a remote office that we have installed a Cisco 877 device in as a backup device and that has been configured with internet access. The idea is that we have the device configired with the same address as the current firewall but not patched into the LAN. In the event of a fault on the main link we would like to patch it in and then have all traffic passed over a VPN to our main site untill the main link is back up operational.
I tried just using the group details we use for our IPSEC clients in the Easy VPN Remote which seems to work as we get the Xauth prompt for a username and password which we put in but that keeps repeating itself. I have a feeling that we are close and its something simple we have to do to crack it.
Any help would be appriciated,