05-27-2008 02:18 AM - edited 03-05-2019 11:14 PM
hi all, i would like to get some guidance on the VPN failover design, just like we do in BGP where the neighbours form neighbour relationship with each others loopback addresses, can we do the same in site to site VPN ? like both of the peers form vpn on some GLOBAL ip ( like ip on loopback or ethernet interface ) so that if 1 of the link goes down vpn is not disrupted..
Any idea ??
05-27-2008 03:01 AM
Ovais,
Give the below url a look over:-
http://www.cisco.com/en/US/docs/ios/12_2t/12_2t13/feature/guide/ftgreips.html
HTH.
05-27-2008 03:36 AM
Dear Andrew, i am not looking for a new type of vpn :) i am looking for a failover design for site to site vpn only ...
Any idea ??
05-27-2008 03:58 AM
What is you corrent VPN hardware? Are you running a dynamic routing protocol? What layer 3 routing devices are you running?
05-27-2008 07:07 AM
My design is very simple. I have 2 routers RA and RB connected via 2 serial links. now in normal cases of site to site vpn i will establish peering between RA and RB on any of these serial links ip addresses. but i want to peer between some GLOBAL ip on both of these routers to ensure transparent redundancy !!
i hope this clarifies
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide