Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
506
Views
0
Helpful
1
Replies

VPN IPSEC HA

ignaciobajo
Level 1
Level 1

‎02-18-2010 01:07 AM - edited ‎02-21-2020 04:30 PM

I would like to know if it is possible of there is a document with the guidelines on how to configure/create the following configuration:

-          Headquarters with two routers 1800 (let’s call them R1 and R2)

-          Branch offices with 800 routers (R3 and R4)

The router R2 must be the one with more priority towards VPN conections. In addition to that R1 router must give Internet connection to user on Headquarter’s LAN.

Branch offices must connect through IPSec tunneling (NO GRE) to the headquarters R1 with redundant availability in case of failure through R2.

There are remote clients of Windows that through IPSec VPN must be able to tunnel to routers R1 and R2

The idea is to have redundancy on the VPN’s and that, in addition, we can have remote clients that connect through Cisco VPN client.

Thanks a lot,

Labels:
0 Helpful
1 Reply 1

Ivan Martinon
Level 7
Level 7

‎02-18-2010 09:31 AM

Hi Ignacio,

If both your 1800 routers are on the same location (geographycally speaking) and they are on the same shared lan and public segment, you might consider using IPSEC HA with HSRP and SSO see the following link:

http://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6586/ps6635/white_paper_c11_472859.html

HTH

Ivan

0 Helpful
Customers Also Viewed These Support Documents