Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Redundant IPSEC VPNs PIX-ASA

Hi, I need to stablish redundant IPSEC VPNs betwen Cisco PIX 525-515 and Cisco ASA 5520. The idea is to provide redundancy of ISPs and redundancy of equipment. ASAs will be installed at the head end site in failover configuration.

Which is the best way to do that?

Can I stablish permanent tunnels and manage the redundancy using dynamic routing protocols betwen the ASA - PIX?

1 REPLY

Re: Redundant IPSEC VPNs PIX-ASA

You can configure 2 peers each on the end-devices. If the connectivity to the first peer goes down, the IPSEC traffic will be automatically shifted to the second peer. you cannot make the tunnels permenantly up. tunnel comes up only if there is any kind of interesting traffic between the subnets.

Hope this helps. all the best.. rate replies if found useful.

Raj

162
Views
0
Helpful
1
Replies
CreatePlease to create content