11-29-2012 11:03 AM
Hi,
We have a customer who has 2 sites, at both sites the have 2 internet connections for redundancy. In the new situation we will install 2 800 series routers. On both sites we will run HSRP for rundundancy.
Now the qeustoin is, i want to run 2 different IPsec tunnels between the sites. So if 1 fails the other is goin to take over. So bassicly i will terminate between r1 at site 1 and r1 at site 2, and a tunnel between r2 at site 1 and r2 at site 2.
I want the tunnel between r1 and r1 to be the main tunnel, and the tunnel between r2 and r2 to be the backup.
What is the best way to achieve this? I could think of a fee things myself, but i really would appreciate some advice from the experts! :D
Thanks in advance
Sent from Cisco Technical Support iPhone App
Solved! Go to Solution.
11-29-2012 12:49 PM
Hi Bart,
I would suggest to build full mesh of VTIs between the routers. Two VTIs from each router connecting to both routers on the other side. Inside VTIs and local networks you run dynamic protocol e.g. EIGRP - you will be able to control tunnels preference based on bandwidth/delay you will set.
Such solution will allow you to have communication between sites even if Internet link on Site A router1 and Site B router 2 go down. In the option you mention this would not be possilble.
Attaching helpful articles:
VTIs -
EIGRP -
http://www.cisco.com/en/US/docs/ios-xml/ios/iproute_eigrp/configuration/12-4t/Configuring_EIGRP.html
I hope that helps.
regards,
Pawel
11-29-2012 12:49 PM
Hi Bart,
I would suggest to build full mesh of VTIs between the routers. Two VTIs from each router connecting to both routers on the other side. Inside VTIs and local networks you run dynamic protocol e.g. EIGRP - you will be able to control tunnels preference based on bandwidth/delay you will set.
Such solution will allow you to have communication between sites even if Internet link on Site A router1 and Site B router 2 go down. In the option you mention this would not be possilble.
Attaching helpful articles:
VTIs -
EIGRP -
http://www.cisco.com/en/US/docs/ios-xml/ios/iproute_eigrp/configuration/12-4t/Configuring_EIGRP.html
I hope that helps.
regards,
Pawel
11-29-2012 02:00 PM
Hi Pawel!
Thanks for your reply! I am going too build a test lab with this tommorow.
I am familiar with routing protcols havnt done vti, so thanks a bunch for the article.
Thanks!
Sent from Cisco Technical Support iPhone App
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide