Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2886
Views
0
Helpful
1
Replies

Cisco ASA Site-to-Site IPsec VPN High Availability ?

janb
Level 1
Level 1

‎02-25-2014 07:07 AM - edited ‎02-21-2020 07:31 PM

Hi,

 

Can anyone help out and confirm the described setup below?

We are going to setup an IPSec VPN tunnel between the office and the Microsoft Azure cloud.

We will have a High Availability setup with two ASA5515 at the office.

In the Azure cloud you can only configure one IP address for the IPSec VPN tunnel at the office.

So my question is you have the 5515 in an Active/Standby setup, in a failover scenario will the standby get an identical configuration, where the same IP address is used at the "outside" and can establish a the IPSec session towards the Azure cloud?

If this is the case, which mechanism ensure this, is it HSRP/VRRP ?

Thanks

Jan

Labels:
0 Helpful
1 Reply 1

Javier Portuguez
Level 9
Level 9

‎02-25-2014 01:34 PM

Hello Jan,

Configuring Active/Standby Failover

VPN SAs are replicated as well.

HTH.

0 Helpful
Customers Also Viewed These Support Documents