cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
274
Views
0
Helpful
2
Replies

Backup VPN setup on ASA

carl_townshend
Frequent Contributor
Frequent Contributor

Hi Guys

We have a Cisco ASA with a vpn to a Meraki Firewall. The VPN can reach the Meraki over 2 different external interfaces for reduandancy.

We have setup 2 different connection profiles for each VPN to the Meraki, we have then used static routes with metrics to point the VPN traffic out of the relevant interface.

We did a test last night and it did not fail over.

Do we need to add the peer ip of the backup vpn under the primary crypto map? 

Are the static routes being used here or does the crypto map decide which path the traffic takes?

Cheers

2 Replies 2

balaji.bandi
VIP Community Legend VIP Community Legend
VIP Community Legend

Where is the LB or failover taking place? on ASA ? can you post the config of the snippet to understand the environment?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Hi

we have set fail over on both the meraki and asa firewall. 
do you need to use static routes in this case or is using only crypto maps enough ?

cheers

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers