07-14-2020 01:51 AM
Hello.
I have some FTD 2110, managed by FMC. I make site2site ipsec (hub and spoke topology).
So on spokes I start to connect secondary ISP for failover. How I can make failover site2site?
for extranet type of spoke I could set peer IP and backup IP. But how I can achive this on managed FTDs?
Thank you.
FMC and FTD has version 6.6
07-15-2020 11:21 AM
Hi,
Please share your connectivity diagram with Dummy IP to check the solution.
Regards,
AKK
07-15-2020 12:05 PM
Thank for your answer!
If I understood you correctly, diagram seems something like that:
each FTD at HA mode, and braches more than two.
01-09-2023 12:42 PM
Look into using routed site to site VPN (VTI). This way you can use dynamic routing to identify the preferred path and backup path.
07-22-2020 03:43 AM
So, I try to make two hub&spoke topology, with hub answer-only and spokes originate (routes to failover ISP is tracked) but it does not seem to work.
May be there is another way or may be some pitfails?..
01-09-2023 10:39 AM
Has anyone figured this out? I am in the same situation and haven't been able to create this topology in a way that works.
01-09-2023 12:45 PM
make new post and ask your Q
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide