Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
6474
Views
3
Helpful
15
Replies

Site-to-site IPsec VPN, ASA to IOS, redundant ISP's

rfera
Level 1
Level 1

‎10-04-2012 03:43 PM - edited ‎02-21-2020 06:23 PM

Greetings,

Site A has an ASA 5510 and a single internet connection.

Site B has two internet connections (primary and backup).

If Site B also has an ASA, I can configure Site A's ASA to deal with a failover at Site B (set peer 1.1.1.1 2.2.2.2). Does this work if Site B has an IOS router instead of an ASA? In other words will "set peer 1.1.1.1 2.2.2.2" on the ASA work when it's talking to IOS on the other end? I have not been able to find a definite answer to this question anywhere...

Thanks!

Bob

Labels:
0 Helpful
15 Replies 15

ju_mobile
Level 1
Level 1
In response to eileenr

‎11-27-2012 11:41 PM

Hi,

If you run "debug crypto ikev1/ikev2 100" if using ikev1 don't add the / v2. In your debug, what is your MM_MSG?
The output of this is very informative. On your ASA do you have an IPSLA against the route to the remote peers?
The IPLSA will control the flip on either the router or the ASA to build a tunnel on the secondary line.

Julian

Sent from Cisco Technical Support iPad App

0 Helpful
Customers Also Viewed These Support Documents