Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

VPN tunnel redundancy PIX 515 & 501

We have a site-to-site VPN connecting our data center (PIX 515) to 20 branch offices (PIX 501). We want to add a 2nd ISP link to our data center for redundancy.

What I'm wondering is are the PIX 501s capable of having 2 static VPN tunnels configured and handling failover/failback if the primary line to the data center goes down.

Or is this a solution that needs to be implemented at the router level with GRE instead of the PIX level?

1 REPLY

Re: VPN tunnel redundancy PIX 515 & 501

Hi

I would suggest to make the remote end ips available via the secondary link on the router itself so that your tunnel config remains the same in the pix firewall.

regds

121
Views
1
Helpful
1
Replies
CreatePlease to create content