Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Wan,VPN, Multiple Routes

This, I guess, is a basic design question. I have a T1 between my main location and a remote location. I also have Internet connections at both locations with firewalls. Both locations have routers behind the firewalls that interface the T1 and the Internet (via the firewalls).

My question is: what is the best way to send all traffic over the VPN connection until that is not available and then switch to the T1? Will OSPF make those descisions, should I be testing the connection with something like RTR, should I be using MPLS?

7 REPLIES
Hall of Fame Super Bronze

Re: Wan,VPN, Multiple Routes

James,

I recommend using a dynamic routing protocol such as OSPF. You will need a GRE tunnel to carry the OSPF and on the tunnel you can apply an OSPF cost lower than the T1's, so it can be preferred.

Regards

Edison.

New Member

Re: Wan,VPN, Multiple Routes

Edison,

Great post! You wouldn't know of a config example for me to look at, would you? I'm currently using OSPF in the network. Would this work if the Internet goes down?

Hall of Fame Super Bronze

Re: Wan,VPN, Multiple Routes

James,

if you build the GRE tunnel at each end with the source and destination being the IP address used for the internet, then the GRE tunnel will go down hence the OSPF adjancency.

Once the OSPF adjancency via the tunnel goes down, the router will only have one path left - the T1.

Here is a sample config with GRE protected tunnel with OSPF.

The T1 is not part of this sample but having the T1 interface with a higher OSPF cost - it's all you need.

Regards,

Edison.

New Member

Re: Wan,VPN, Multiple Routes

Edison,

Thanks for your reply. I didn't get the sample. Can you resend?

Hall of Fame Super Bronze

Re: Wan,VPN, Multiple Routes

My apologies, I thought I included the URL on my previous reply, here it is:

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800a43f6.shtml

Regards

Edison.

New Member

Re: Wan,VPN, Multiple Routes

Edison,

Thanks again for your help! I going to start working on this right now. Again, thanks!

New Member

Re: Wan,VPN, Multiple Routes

Hi Edison, I have question on the same topic but with some addition.

I have gone through the link but still get how to overcome on this scenario.

Site_A-----------Site_B

I have IPSEC over GRE between Site_A and Site_B, in all there are 3 Tunnels between them.

Site_A has only one Service Provider

Site_B has Three Service Provider, each Tunnel going to Site_A is with different Service Provider.

Tunnel #1 works great when other tunnels are manually shutdown and it has static entry pointing to remote public IP.

Tunnel #2 doesnt work even if other tunnels are down ; same with Tunnel#3

I wanted to make all tunnels workings and have load balancing or let tunnel work in redunduncy scenario.

122
Views
15
Helpful
7
Replies