We use HA VPN (HSRP) for our IPSEC based business partners. It has worked
well for years, but I’m only partly happy.
We have built our data centers to be as independent as possibly. Minimal
OTV, routed mainframe, separate internal and external up space. However,
with HA VPN, I have to have L2 stre
What devices? ISR / ASR ?
static VTI tunnels or DMVPN?
Try not to mix HSRP and routing - HSRP is just for gateways. If you need two
tunnels you will need a routing protocol.
Send us the design you need to accomplish
-Original Message-
From: cisco-nsp [mailto:cisco-nsp-boun...@puck.net
I am looking to implement a highly available IPSEC route based VPN.
Traditionally I would bring up multiple tunnels with multiple BGP peers in
a dual router setup.
IPSEC HSRP design appears to be the flavor of the day, failover times
appear to be lengthy compared to failover times via BGP. IS anyo