I trying to setup l2l failover and my 3005 in one end can't do multiple peers unless is configured as originate-only.
My other end, an 1841, has 2 ISPs. Basically what I need is this site to always have l2l connectivity to the VPN 3005 side even if ISP1 is down.
Traffic will always be originating from this 1841 branch office, so this is the reason I don't want to make the 3005 originate-only, unless anyone can tell me how to "force" the 3005 to bring up the tunnel in the event that the 1841 side ISP1 goes down and their ISP2 becomes the active one?
What's the best way to accomplish this?
Is there any keep-alive I can setup in the 3005 to always have it ping the 1841 side?
You can configure only one LAN-to-LAN connection with each VPN Concentrator (or other secure gateway) peer. You must configure identical basic IPSec parameters on both VPN Concentrators and configure mirror-image private network addresses or network lists.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...