Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1160
Views
0
Helpful
1
Replies

IPSEC VPN TUNNEL PRIORITY ON CISCO ROUTER 1111

Netplace Support
Beginner
Beginner

‎05-22-2019 11:06 PM

Hi Team,

I'm having Cisco Router 1111-8P configured ipsec site to site vpn tunnel with my DC location Router. Currently i required to configure another ipsec site to site vpn tunnel for standby/Secondary on same Cisco Router 1111-8P , if my first ipsec site to site vpn tunnel fails, traffic should go via Secondary ipsec tunnel

 

So could anyone guide me what are configuration/priority values i need to do for secondary ipsec tunnel if primary goes down.

 

Attached is the configuration notepad for primary and Secondary ipsec tunnel.

 

regards,

vishal

Labels:
Preview file
11 KB
0 Helpful
1 Reply 1

Georg Pauwen
VIP Master VIP Master
VIP Master

‎05-23-2019 12:45 AM

Hello,

 

I think the 1111 supports the IPsec Preferred Peer feature (which works in conjunction with dead peer detection). Basically, you set one (the preferred) peer as the default, and the second peer will be the backup:

 

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_vpnav/configuration/15-mt/sec-vpn-availability-15-mt-book/sec-ipsec-pref-peer.html

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers
Spotlight Award Nomination
Customers Also Viewed These Support Documents