Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
476
Views
5
Helpful
1
Replies

Alternate VPN connection routing.

frelaxx
Level 1
Level 1

‎07-20-2007 09:48 AM - edited ‎02-21-2020 01:36 AM

I have a remote location that connects through Sprint to my central site (NYC)via a Sprint directed VPN called a half-tunnel. I recently had a new circuit installed at the remote location for redundancy which points to the Internet and I have set an IPSec site-to-site VPN from my PIX in NYC to the remote location. I configured the Sprint facing router with an alternate default gateway to point to the redundant circuit. When I fail the Sprint facing circuit the Internet traffic continues to work through the other circuit, I transmit pings to create interesting traffic and the site-to-site VPN comes up. But the return traffic doesn't seem to find it's reurn path. The NYC PIX is connected to the Sprint VPN via an IPSec VPN. Can I set NYC PIX to direct the traffic to an alternate VPN if a failure occurs. We will be migrating to full MPLS soon, but I wanted to make this work as described now. Is it possible?

0 Helpful
1 Reply 1

ggilbert
Cisco Employee
Cisco Employee

‎07-22-2007 03:29 PM

You configure the PIX with another IP address on the set peer command.

Eg:

cry map mymap 10 set peer 10.10.10.1

cry map mymap 10 set peer 10.10.10.2

Let me know if this works.

Thanks

Gilbert

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card