Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN on non default route interface

If I setup a VPN on an ASA interface which is not the default route will it establish?

The interface is the backup default route (using floating static and tracking) but not the default.

Basically this is what I want that the VPN only comes up in the event of failure of primary route and transfer to the backup route.

But i'm worried that the VPN could come up anyway. Which would be bad!

4 REPLIES
New Member

Re: VPN on non default route interface

It depends on how the other end is configured. If it can specify which peer address is primary/default then it will only try the other peer if the first peer is unreachable, hth.

New Member

Re: VPN on non default route interface

The primary connection is a layer 2 direct fibre link and in the event of failure of this link i want a VPN tunnel to establish over ADSL to the same site

However I am concerned the ADSL tunnel will establish automatically and take precedence as the main route. Which of course i don't want

Is this possible?

New Member

Re: VPN on non default route interface

It is possible the other VPN will only be established over the ADSL if the primary link fails.

New Member

Re: VPN on non default route interface

it is possible???

i assume this is because the VPN cannot establish out because its interface is not the default internet route? (until failure causes the floating static to pop up that is)

?

thanks again by the way

124
Views
5
Helpful
4
Replies