configure automatic switchover from primary to backup tunnel

80 pts.
Tags:
Cisco
Hi All, Some one pl suggest. The scenario is ,we want to configure a backup link to our main branch which is connected to US & we are having dedicated primary link to it & whenever the primary link goes down.Then, we will initiate the backup tunnel from the firewall. We want to configure automatic switchover from primary to backup tunnel
Asked: Last updated:
Related Questions
1

Answer Wiki

Thanks. We'll let you know when a new response is added.

If you create a scenario like this, you can perform the automatic failover:

<pre>
+————+
| |
IF 1 / — — \ IF 2
/| |Lo1| |Lo2||\\
/ | — — | \
// +————+ \
/ \\
/ \
+—-/—-+ +—–\—+
| | | |
| | | |
+—-+—-+ +—-+—-+
| |
| |
| |
| ISP | ISP
| 1 | 2
| |
| |
| |
| |
+—-+—-+ +—-+—-+
| | | |
| | | |
+—-\—-+ +—–/—+
\ /
\ /
\ /
\ /
\ /
\ +————+ /
\| |/
\ — — /
IF 1| |Lo1| |Lo2||IF 2
| — — |
+————+
</pre>

Build your VPN tunnels from IF1 to IF1 and IF2 to IF2
Then build GRE tunnels from Lo1 to Lo1 and Lo2 to Lo2 (GRE for Lo1 routed over VPN for IF1 / GRE for Lo2 routed over VPN for IF2)
give a higher routing metric to your secondary route than that of your primary route. If your primary route goes down, your secondary will automatically take over.

This is the easiest solution – If this doesn’t work, there are other solutions (if you are in a cisco environment) – but they are more complex.

Discuss This Question:  

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

Thanks! We'll email you when relevant content is added and updated.

Following

Share this item with your network: