Hi all,
I was wondering if it was possible to apply one crypto map to two interfaces (each interface being a different isp). For example use something smiliar to this:
crypto map SDM_CMAP_1 1 ipsec-isakmp
description Tunnel to 1.1.1.1
set peer 1.1.1.1
set transform-set TS
match address 101
crypto map SDM_CMAP_1 2 ipsec-isakmp
description Tunnel to 2.2.1.1
set peer 2.2.1.1
set transform-set TS
match address 102
!
interface s0
no ip address
crypto map SDM_CMAP_1
interface s1
no ip address
crypto map SDM_CMAP_1
Could this work based under the assumption that my route maps and routing was already set properly?
If this is incorrect, what is the best practice for routing vpn as a failover on 2 isp?
TIA, Fred.