Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
59
Views
0
Helpful
0
Replies

ROUTE MANIPULATION

fmugambi
Spotlight
Spotlight

‎07-22-2024 02:54 AM

Hello Team,

I have a network as attached,

fmugambi_0-1721641746525.png

I have a different thread on community to be assisted on the "passive-site" to redistribute the ipsec static routes from the vFTD to the core sw site 2. -This is still on progress as still not working as expected.- despite the ospf red static command on vFTD, the core site 2 does not learn the remote ipsec networks.

If we were to unblock this, then follows my next challenge;

core sw site 2 would know remote network ipsec networks, so how would this operate to avoid assymetric routing, where, traffic comes in from active site say  to site b vlan/server, the server responds back, traffic gets to core sw site 2, how would this device route the traffic? via vFTD on passive-site or back via mpls to active site ftd then to destination? 

is there a way to control this thats more efficient than shutting down interfaces at passive-site, and unshutting them once active-site has an issue and you expect to failover traffic to passive-site?

your support, thoughts and ideas on this will be much appreciated.

Thank you.

 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card