I am working on a design and configuration for a company network where all of the locations have or are going to have dual ISPs for redundancy. I have everything configured the way I want it and working except for the VPNs. All of the branches come back to the main location for their servers and run through single VPN tunnels. But when the addition of the second ISP to each location comes what is the best way to make the VPNs redundant as well. I have tried to use 2nd peer addresses in crypto maps but it intermittently has issues. A user on here recommended DMVPN which I have set up in a test with single ISPs and I love it, works great. But how would I make this DMVPN cloud redundant? Do I have to just create a second cloud and always have the circuits at all location fail over to the second DMVPN cloud even if technically not all location primary circuits have dropped, or is there a way to make the GRE tunnels redundant through both ISP circuits back to the hub. Any information or thoughts would be greatly appreciated.
Thank you very much for your reply zulqurnain, this solution worked well when the branch locations had only one ISP, but they are also going to be redundant. That is where the intermittent issues arose. That is why someone suggested the DMVPN idea.
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.