Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
364
Views
0
Helpful
1
Replies

IPSEC VPN as Serial/WAN Backup ?

nickbettison
Level 1
Level 1

‎01-25-2007 02:53 AM - edited ‎02-21-2020 02:49 PM

Hi,

We have a traditional WAN running OSPF, has anyone tried backing up their links over the Internet.

So, Remote site; something like a 2800 with a Serial & ADSL WIC. The Point-Point link goes to "datacenter a" and the VPN goes to an ASA at "datacneter b".

Does anyone know of any examples ? As one end is a router, would I still need GRE tunnels ? (Examples of OSPF over IPSEC without GRE, have pix/asa's on both ends)

Thanks in Advance,

Nick

Labels:
0 Helpful
1 Reply 1

hacronin
Level 1
Level 1

‎01-31-2007 11:47 AM

I know of a few companies doing just such a thing to save $$. You will need to run GRE through the IPSEC tunnels to support routing protocols and any other multicast traffic you may have a need to transmit, even though one end is a router. IPSEC operates at layer 3. This adds quite a bit of overhead to the packet so make sure your OSPF metrics are set such that the WAN link is preferred over the Internet link.

0 Helpful
Customers Also Viewed These Support Documents