Skip to main content
maschimidt
maschimidt
New Member
July 24, 2020
Question

IP-sec redundancy tunnel

  • July 24, 2020
  • 1 reply
  • 2977 views

Hello. We have a customer who has two internet links, and he currently has an ipsec vpn tunnel with our company. We have only 1 internet link, is it possible for me to create another tunnel with the same settings as the tunnel in production by changing only the remote gateway in the configuration on my side?

I believe that on his side, you will need to create another route for this second link at a higher cost than the first, right?

Thanks all

    1 reply

    oscar37
    oscar37
    New Member
    July 24, 2020

    Hi maschimidt,

    assuming you have site 2 site tunnel,

    You can build another tunnel to customers secondary WAN with the same settings and monitor the Primary tunnel from backup tunnel.

     

    That way Backup tunnel will only come up when primary goes down .

     

     

    Thank You

    Oscar

     

     

    emnoc
    emnoc
    New Member
    July 24, 2020

    FWIW I prefer using a routing protocol and failure between the two VPN would happen automatically with no effort from the fw.admin

     

    Ken Felix

     

    Terms & ConditionsAccessibility statement