Solved: Site to Site VPN Redundancy

raghavendra.pn · ‎08-23-2011

Hi,

I have two ASA 5510 configured with site to site tunnel. on the both side of the ASA 5510 i have configured Redundancy links (terminated 2 ISP links) which is working fine.

Now i need to configure Site to site vpn for the backup link.

Please suggest me how to configure the site to site redundancy on both locations.

Regards,

Raghavendra

rohaverm · ‎08-27-2011

I am not exactly sure of your network topology but there is the option to define two peers for site to site VPN connection. You can do this by

crypto map toSanJose 20 ipsec-isakmp

crypto map toSanJose 20 match address 90

crypto map toSanJose 20 set transform-set strong

crypto map toSanJose 20 set peer 209.165.200.229 125.126.127.22

The first peer is always given the priority,in case if it is not available it failovers to second peer.

Hope it helps.

Regards,

Rohan

View solution in original post

rohaverm · ‎08-27-2011

I am not exactly sure of your network topology but there is the option to define two peers for site to site VPN connection. You can do this by

crypto map toSanJose 20 ipsec-isakmp

crypto map toSanJose 20 match address 90

crypto map toSanJose 20 set transform-set strong

crypto map toSanJose 20 set peer 209.165.200.229 125.126.127.22

The first peer is always given the priority,in case if it is not available it failovers to second peer.

Hope it helps.

Regards,

Rohan