I have a router with 2 ISP's with 2 L2L tunnels, if the primary goes down it fails over to the backup VPN tunnel just fine, however when the primary comes back up it tries to create a VPN tunnel but the VPN tunnel on the secondary is working and connected so it does not work. The problem is that because the primary came back up it stops routing through the secondary VPN tunnel and then everything is down until I go in and submit clear crypto sa. Is there a automated way of either failback to the primary or not letting the primary tunnel to come up if the primary interface comes up? Any suggestion would be helpful or if anybody is doing this, please give me some suggestions on how to fix this.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...