DMVPN Spoke with 2 Wan connections for failover to single Hub
Scenario: We currently have a DMVPN hub running two tunnels, one to each of our two spoke sites. We are using static routing. At these sites, we'd like to have failover to another ISP if the primary goes down, then reverting back to the original when it comes back up. I've had many issues getting this configuration to work successfully, with various results. Just looking for a good source material to look at for this scenario, with examples.
Thus far, I've tried running two tunnels from the hub to the spoke, with the spoke using one wan interface for each tunnel and the hub using the same interface for both tunnels. (along with the tunnel going to the other spoke). I've tried using sla to fail over to the higher cost route, but noticed that the traffic isn't following suit across the tunnel, plus when the primary isp comes back up it doesn't revert back to the primary route.
So, to summarize, it's broken. Would appreciate anyone who could provide a breakdown of what would be involved in this scenario, with examples.
Cisco Champion Radio · S7|E26 Simplify your Security with the new SecureX platform
Securing your organization is becoming increasingly complex. It may seem faster to tack on new point products to address the latest attack or protect yet another threat v...
Join us live on Tuesday, July 14 (and on demand after) to learn what impacts COVID-19 has had on the information security landscape from one of the people living that fight.
We'll take your questions live during the show and after, so post them belo...
TETRA Error Codes - Windows
Here are some common TETRA Error codes that you may find displayed in the dashboard as well as within the C:\Program Files\Cisco\AMP\<your_version>\sfc.exe.log or corresponding sfc.exe_<date>_<time>.logs. The...
Please note that the minimum cryptography settings in AnyConnect 4.9 have been increased. Please ensure that your head-end is properly configured for the more stringent cryptography settings (if applicable) or users will be unable to connect after updatin...