Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
878
Views
0
Helpful
2
Replies

IPSec VPN HSRP

Patrick Koenighaus
Level 1
Level 1

‎11-04-2010 06:03 AM - edited ‎02-21-2020 04:57 PM

Hello together,

have a small problem and hop for your help.

I would like to have an fail-safe VPN Tunnel between two lacations.

Hardware Location A:

2x ASA 5520 (Activ/Standby)

Hardware Location B:

2x Cisco 1812 Router IOS 12.4 (HSRP)

So now the Configuaration works well. If Router A in location B is activ all by ok.

Now i shutdown Router A in location B, the Router B is open an new VPN Tunnel to the ASA.

Only 1 ping is lost (good).

Now to my problem, when i swing back to the Router A (HSRP Master) many ping is lost (approximately 20 Windows pings)

Firewallplanung.jpg

Has anyone of you an idea how such a scenario best transpose???

Thanks in Advance for your answer....

Best Regard

Patrick

Labels:
0 Helpful
2 Replies 2

Jitendriya Athavale
Cisco Employee
Cisco Employee

‎11-08-2010 01:16 AM

what is the peer  ip on the asa is it the VIP or the actual physical ip, where is the hsrp running on outside or inside

0 Helpful

Patrick Koenighaus
Level 1
Level 1
In response to Jitendriya Athavale

‎11-08-2010 01:22 AM

Hello,

the ASA Peer Address is the HSRP Address of the Outside Interface (WAN).

HSRP is running inside and outside!!!!

Best Regards

Patrick

0 Helpful
Customers Also Viewed These Support Documents