08-18-2011 12:49 AM - edited 03-04-2019 01:19 PM
Hi All,
I'm trying to setup Internet redundancy between two offices, so should one office lose internet connectivity, Internet connectivity will resume via the other office.
The company has two office's which are connected via a wireless/microwave link. At each office there is a Cisco 1811 router, the Cisco's connect to an ISP circuit (FE0), FE1 is the link to the wireless devices and the internal LAN at each office is connected to the 8 port switch on the 1811.
I have setup redundancy between the offices using a VPN tunnel and EIGRP. If the wireless/microwave link goes down, the offices can still communicate via the VPN tunnel. For the internet failover, I have configured an IP SLA on both devices & also used "redistribute static metric" command in EIGRP. When I test the Internet failover, I can see the routing table updates as I expect and I can ping out to the devices on the Internet but I am unable to access HTTP(s) sites. Could someone, please, advise where the issue might be, I find it strange that I can ICMP traffic works but HTTP(s) does not.
Thanks in advance!
08-18-2011 01:04 AM
Is the DNS working.?
08-18-2011 04:46 AM
Hi
what kind of tunnel you have between offices ? Is this Ipsec tunnel or GRE tunnel, if GRE you may required to adjust tcp mss on both side of the interface to have HTTP(s) sites access.
The command will be similar to below
interface tunnel xx
ip tcp-adjust mss 1436
Rgds
Rama
08-18-2011 05:13 AM
Hi Sudeep & Rama,
Thanks very much for replying!
DNS is working fine when we are testing the Internet failover, we can ping websites via name and IP.
Regarding the VPN tunnel, I have setup a GRE tunnel but I don't think I need to adjust any interface settings as when Internet goes down at one office, connectivity should resume via the other office Internet circuit. The primary link between the two offices use the wireless/microwave link and not the GRE tunnel.
Thanks
08-18-2011 05:31 AM
i agree with Rama maybe the TCP mss or mtu
have a look at the bellow link
http://www.cisco.com/en/US/tech/tk827/tk369/technologies_white_paper09186a00800d6979.shtml
HTH
08-18-2011 05:53 AM
Hi Michael,
Can you post the config of any sites please.
Rgds
Rama
08-18-2011 07:25 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide