Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1415
Views
2
Helpful
6
Replies

How to strech LAN across Data Center over internet

Go to solution
s_colombo
Level 1
Level 1

‎09-10-2012 11:51 AM - edited ‎03-03-2019 06:45 AM

Hi All

I've the following question regarding how to implement a DR Site.

We are to be able to offer a DR site for our customers .

The Basic Idea is to link the customer's site and our DR site through a VPN based on ASA appliances

At the customer site a software based replication solution will mirror virtual machines to the DR site

Now the problem :

We need to "strech" the customer LAN into our DR site , each customer will have its VLAN , because in case of problem the VM in DR will be turned on and need to be reachable by customer clients

Is that possible with ASA ? Otherwise how can we accomplish that?

Thanks

Stefano Colombo

Sent from Cisco Technical Support iPad App

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
sean_evershed
Level 7
Level 7
In response to s_colombo

‎09-11-2012 06:44 AM

Hi,

See below a recent discussion on the topic. ASAs do not support a layer 2 VPN tunnels.

https://supportforums.cisco.com/message/3730438#3730438

As one of the posters suggested in this thread have a look at deploying routers with GRE/IPSEC tunnels.

Cheers

Sean

View solution in original post

0 Helpful
6 Replies 6

Go to solution
Marwan ALshawi
VIP Alumni
VIP Alumni

‎09-11-2012 12:40 AM

I don't think over Internet is good and scalable data center interconnect solution

Do you need to extend L2 vlans between the two data centers ? Or only some sort of hello messages needed between the active and standby VMs ?

If L2 is required then you need to consider a better and different option for this DCI such as L2 p2p link, or l2 over l3 network such as L2tp, OTV and this is something relay on the used HW as well

Sent from Cisco Technical Support iPad App

0 Helpful

Go to solution
s_colombo
Level 1
Level 1
In response to Marwan ALshawi

‎09-11-2012 01:09 AM

Unfortunately the connectivity must be through internet as we have to provide it as a service for our customers

We need to create , possibly , a L2 tunnel for VM replication and DR without having to reconfigure IP Addressing and routing

Thanks

0 Helpful

Go to solution
sean_evershed
Level 7
Level 7
In response to s_colombo

‎09-11-2012 06:44 AM

Hi,

See below a recent discussion on the topic. ASAs do not support a layer 2 VPN tunnels.

https://supportforums.cisco.com/message/3730438#3730438

As one of the posters suggested in this thread have a look at deploying routers with GRE/IPSEC tunnels.

Cheers

Sean

0 Helpful

Go to solution
Marwan ALshawi
VIP Alumni
VIP Alumni
In response to s_colombo

‎09-12-2012 01:56 AM

Well this a bit complicated especially if it's gonna be used for several customer

First I would suggest you to discuss it with a local cisco se/sa for a recommendation

And as I mentioned above you need to consider a l2 tunneling technology over l3 taking into consideration the HW used

Sent from Cisco Technical Support iPad App

Go to solution
s_colombo
Level 1
Level 1
In response to Marwan ALshawi

‎09-12-2012 04:56 PM

hi , can you provide links to l2 over l3 reference architecture and documentation ?

I need to start looking at which hw can provide such functionality

thanks

Sent from Cisco Technical Support iPad App

0 Helpful

Go to solution
isacco.fontana
Level 1
Level 1
In response to s_colombo

‎09-29-2012 02:36 AM

If you must transit over internet you can use mpls over gre tunnel and activate eompls with qinq over pw.

This work but the performance isn't guaranteed.

Isacco

Sent from Cisco Technical Support iPad App

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card