VPN Failover Configuration

Unanswered Question
Sep 22nd, 2010
User Badges:

Hi there,

Kindly help on how to configure a scenario that requires a VPN to failover to another VPN connection if the primary link is down. Here's the case, we have two router, Router A on the HQ and Router B on the the branch site. Both of the routers A and B has Dual ISP or multi-homed. I need to configure the two routers with both their ISP's to be used for VPN tunnel. VPN tunnels were destined to the same network on the private side of each of the router. The setup will be Router A's link 1 connected to Router B's link 1 and Router A's link 2 connected to Router B's link 2 via VPN and vice versa. This must be done to achieved a redundant VPN connection that will auto failover in case a VPN link is down. Any sample config would be appreciated.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Marcin Latosiewicz Wed, 09/22/2010 - 03:03
User Badges:
  • Cisco Employee,


The two sites are supposed to establish VPN  similar to lan to lan?

If so have you given a though to SVTI or SVTI-DVTI configuration?

It pretty much depends  how it's configured and how much you're willing to change it. Starting with routing.

Multihomed site can run DVTI of a loopback and branch can run two SVTI tunnels to the DVTI (running routing protocol to choose one)



This Discussion