We have a Cisco ASA with a vpn to a Meraki Firewall. The VPN can reach the Meraki over 2 different external interfaces for reduandancy.
We have setup 2 different connection profiles for each VPN to the Meraki, we have then used static routes with metrics to point the VPN traffic out of the relevant interface.
We did a test last night and it did not fail over.
Do we need to add the peer ip of the backup vpn under the primary crypto map?
Are the static routes being used here or does the crypto map decide which path the traffic takes?