cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1009
Views
0
Helpful
2
Replies

Static Routing backup without tracking objects

sebastian.lemke
Level 1
Level 1

Hi,

please see my setup attached.

I have static routing between MY SITE and the CUSTOMER SITE. There are IPSec VPN Tunnels with "tunnel protection" between the routers. Yet I would like to have automatic failover, when either the Internet connection or the MPLS connection goes down.

The 1st option would be to implement tracking via sla monitoring:

R03 has two static routes, one with metric 99:

     1. ip route <CUSTOMER_LAN> <TUNNEL_IF_R01> track 10

     2. ip route <CUSTOMER_LAN> <LAN_IF_R04> 99

R03 pings tunnel interface from R01, if it gets no reply, then tracking fails, and the 1st route gets deleted from the routing table. The 2nd route is used then. Same configs on the other routers vice versa.

This 1st option works fine. But I am searching for a second option. If I had a tunnel interface on the routers, that wents down, when the peer isn't reachable, then the primary static route would go down without tracking. This would be a much more smart and scalable solution to the problem. But how do I implement this?

Thanks for your help!

1 Accepted Solution

Accepted Solutions

Nagaraja Thanthry
Cisco Employee
Cisco Employee

Hello,

Route tracking is the easiest and better option to configure failover. In

your case, if you are looking for events like VPN tunnel going down, then

you could try EEM (Embedded Event Management). But, I would think route

tracking is an easier option as, in either case, you need to know that you

are not able to reach the remote destination and that is the reason the

tunnel went down.

EEM information:

http://www.cisco.com/en/US/docs/ios/netmgmt/configuration/guide/nm_eem_polic

y_cli_ps6441_TSD_Products_Configuration_Guide_Chapter.html

Hope this helps.

Regards,

NT

View solution in original post

2 Replies 2

Nagaraja Thanthry
Cisco Employee
Cisco Employee

Hello,

Route tracking is the easiest and better option to configure failover. In

your case, if you are looking for events like VPN tunnel going down, then

you could try EEM (Embedded Event Management). But, I would think route

tracking is an easier option as, in either case, you need to know that you

are not able to reach the remote destination and that is the reason the

tunnel went down.

EEM information:

http://www.cisco.com/en/US/docs/ios/netmgmt/configuration/guide/nm_eem_polic

y_cli_ps6441_TSD_Products_Configuration_Guide_Chapter.html

Hope this helps.

Regards,

NT

Thanks for your help!

I finally came to the conclusion, that tracking is the best solution....

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco