?
Solved

How to achieve VPN failover automatically using Cisco PIX 515E and Concentrator 3000

Posted on 2006-07-04
3
Medium Priority
?
481 Views
Last Modified: 2008-03-03
I want to build redundant VPN tunnels. The primary VPN link should be through Cisco PIX 515E and the backup VPN link should be through Cisco Concentrator 3000 series. The VPN failover should happen automatically. The primary VPN link will have a PIX failover option as well.

Please suggest the process to follow.

Thanks,
0
Comment
Question by:nessmssit
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 1000 total points
ID: 17037191
Build the tunnels with two peers, putting the primary peer first. It will be first come, first served. If the first peer is unreachable, it will establish tunnel with 2nd peer.
Set the PIX and the VPn3000 to use OSPF and enable reverse route injection to tell your internal router which way that remote subnet is available through. Don't have an internal router? You need one. Your PIX cannot be the network's default gateway if you want this to work.
0

Featured Post

Ransomware Attacks Keeping You Up at Night?

Will your organization be ransomware's next victim?  The good news is that these attacks are predicable and therefore preventable. Learn more about how you can  stop a ransomware attacks before encryption takes place with our Ransomware Prevention Kit!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On Feb. 28, Amazon’s Simple Storage Service (S3) went down after an employee issued the wrong command during a debugging exercise. Among those affected were big names like Netflix, Spotify and Expedia.
Make the most of your online learning experience.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Suggested Courses
Course of the Month11 days, 10 hours left to enroll

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question