Solved

Backup routing using Cisco 3550

Posted on 2004-10-06
5
199 Views
Last Modified: 2010-04-12
I have a Cisco 3550 EMI switch which is the default gateway of my all hosts in my LAN. I have a point-to-point link to a client site which terminates on a Cisco 2610 router and the router is connected to the 3550. I have a Cisco PIX firewall from where I have a VPN to the same client site. The trusted interface of the PIX terminates on the 3550 as well.

Now I want that when the point-to-point link goes down ... all traffic should automatically be routed through the VPN. Please let me know the configuration that should be done in the switch to achieve this.

Regards,
Anindya.
0
Comment
Question by:mitra_am
  • 3
5 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 125 total points
ID: 12236273
You need some type of dynamic routing taking place between the router and the 3550 so that if the router's WAN interface drops, it will notify the 3550..

Something like this:

2610:
 ip route 0.0.0.0 0.0.0.0 <upstream ip>
  router ospf 222
   network 192.168.122.0 0.0.0.255 area 0  <== subnet of Ethernet 0/0
   default-information originate

3550:
  router ospf 222
   network 192.168.122.0 0.0.0.255 area 0
  ip route 0.0.0.0 0.0.0.0 <ip of PIX> 120  <== metric higher than the 110 from ospf

0
 
LVL 79

Expert Comment

by:lrmoore
ID: 12236290
Assuming you can get the router at the other end of the point-to-point to participate in ospf, that would be better. As a matter of fact, even the PIX FW can participate in ospf.

Your issue may be that even though your side works, the other side might not. You'll have to get all peices involved together with one plan.
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 13737566
Do you need any more assistance or information?
Can you close out this long-forgotten question?
Here's how:
http://www.experts-exchange.com/help.jsp#hs5

Thanks!
<8-}
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you connect to your workplace's VPN, you may not notice that you are using your workplace's servers to serve up webpages.  This might be undesirable since the workplace can log all the places you've been.  It also might be very slow to load pag…
Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now