Hello. The documentation that I've read on HA IPSec utilizing HSRP shows a headend site utilizing two routers running HSRP and the branch office running one router.
I was wondering if you can run IPSec in HA mode utilzing HSRP at both the headend and remote locations? So instead of the headend site having a set peer address of the physical interface of the branch router I would point it to the HSRP IP at the branch office.
I've tried this and it doesn't seem to work. Even though the branch office is setup with IPSec in HA mode the HSRP primary router still uses the physical interface IP when it initiates the tunnel.
Thanks