Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I want so setup a hub and spoke ipsec tunnel topology with a redundant hub (hsrp based). I wonder how to implement certificate based authentication in this case as both router share the same ip address? Do they need to have the same keys and certific...
The point is that certificates are bound to ip addresses or names. As there is no way to transfer private keys from one router to another, both router will have different certificates. From the remote site's point of view there is only one ip address...
