we are planning to connect a 2921 ISR G2 on a branch site using 3 ADSL lines of different ISPs.
The goal is to load balance the lines in order to gain more bandwith and have some redundancy if one of the links fails. So far, so good.
The branch site needs to be connected to a central site (Cisco 2921 ISR G2 as well) via an IPSec VPN configuration.
Since the branch router with it´s 3 ADSL lines will have 3 different public IP Addresses, and an IPSec
tunnel usually has only one endpoint IP address configured, my question know is:
Is there a way the IPSec tunnel can make use of the loadbalanced configuration of the branch router or in other words use all of the 3 lines? I thought aboút configuring all the external IP addresses of the branch router in the crypto map of the central router, and bind the crypto map of the branch router to all outgoing interfaces, but how is the loadbalancing (if possible) being controlled?
I was helping some friends and they were trying to solve a scalable VPN issues, specially these days with the pandemic situation.
I recommended to implement ASA VPN Load-Balancing.
This will allow to keep 1 FQDN for all RA-VPN users an...
Purpose of this article is to share our experience during that Covid-19 period where we were able to successfully setup a VPN configuration for remote worker using Alcatel 8068S phones with FTD 2110 running 126.96.36.199.I would like to thank all of my colleagu...
If you have ever configured central web authentication with ISE you understand that it requires one to configure ACL that dictates what traffic is to be redirected vs. let through without redirection. You also understand that this ACL needs to be config...
Cisco Defense Orchestrator (CDO) is a cloud-based multi-device manager that can manage security products like the Adaptive Security Appliance (ASA), the Firepower Threat Defense next-generation firewall, and Meraki devices, to name a few.&nb...