Categories
Welcome Center
Education & Development
Cyber Security
Virtualization
General
Certification Preparation
Project Management
Posts
Groups
Training Resources
Infosec
IT & Security Bootcamps
Practice Exams
Security Awareness Training
About Us
Home
Certification Preparation
Cisco
CCNP
BGP and IPSEC VPN Failover
Bl8ckr0uter
So I have two sites that use BGP to fail over ip address spaces in a non automated fashion (ie one site doesn't advertise the space and the other does so there is no primary/secondary relationship at this time). The problem I have is that while the pings come over, the ipsec tunnels that terminate to those devices do not. We do not want to move to an automated failover at this time. For anyone in this situation, would it be better to set up a scheduled ping to create interesting traffic on both routers (knowing that it will fail the vast majority of the time on the second non primary site) so that when the ip space does fail over the tunnels fire up or should I just move to an automated solutions (by way of BGP weights)?
Find more posts tagged with
Comments
blaker00
ip sla... tends to be faster.
Bl8ckr0uter
I found a better way - Turning on DPD
I totally forgot I hadn't enabled it.
It is all good now
Quick Links
All Categories
Recent Posts
Activity
Unanswered
Groups
Best Of
