BGP and IPSEC VPN Failover

Bl8ckr0uterBl8ckr0uter Posts: 5,031Inactive Imported Users
So I have two sites that use BGP to fail over ip address spaces in a non automated fashion (ie one site doesn't advertise the space and the other does so there is no primary/secondary relationship at this time). The problem I have is that while the pings come over, the ipsec tunnels that terminate to those devices do not. We do not want to move to an automated failover at this time. For anyone in this situation, would it be better to set up a scheduled ping to create interesting traffic on both routers (knowing that it will fail the vast majority of the time on the second non primary site) so that when the ip space does fail over the tunnels fire up or should I just move to an automated solutions (by way of BGP weights)?

Comments

  • blaker00blaker00 Posts: 6Member ■□□□□□□□□□
    ip sla... tends to be faster.
  • Bl8ckr0uterBl8ckr0uter Posts: 5,031Inactive Imported Users
    I found a better way - Turning on DPD icon_eek.gif I totally forgot I hadn't enabled it. icon_sad.gif It is all good now :)
Sign In or Register to comment.