Hi All,
our customer have a two IP providers with different Public IPs, on our site there is only one public IP address.
We have already configured one IPSec S2S VPN with 1st Provider.
Question is if is possible to configure second IPSec S2S backup VPN connection with 2nd Provider to different public IP with same encryption domains.
I have already found some article regarding backup L2L feature, but it can be used for two ASAs only, but on our customer site there is some basic device from another vendor.
Thank you
Solved! Go to Solution.
Yes that's possible, the peer is added as a backup peer on the crypto map:
*The tunnel will be active only with one of the 'peers' at a time, DPD is used to track peer aliveness.
HTH.
Pablo
Not that aware of this solution possible at this stage. how is 2 ISP provider terminating connection to you ?
Yes that's possible, the peer is added as a backup peer on the crypto map:
*The tunnel will be active only with one of the 'peers' at a time, DPD is used to track peer aliveness.
HTH.
Pablo
Hi Pablo,
Thanks for answer, I have already configured it, but I did not test it so, when I will test it I will let you know, if it works properly.
Thank you
Hi Pablo,
thanks for help, do you maybe have som article, because I have already checked it, and it works, but I do not know how it works after swithch to backup peer and back to primary peer.
Thank you
Hi Jaro,
DPD is the one doing the trick on your side.
Here you can find more information about this feature, it's based on IOS but it's the same logic for the ASA:
HTH
Pablo