Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 487
  • Last Modified:

How to achieve VPN failover automatically using Cisco PIX 515E and Concentrator 3000

I want to build redundant VPN tunnels. The primary VPN link should be through Cisco PIX 515E and the backup VPN link should be through Cisco Concentrator 3000 series. The VPN failover should happen automatically. The primary VPN link will have a PIX failover option as well.

Please suggest the process to follow.

Thanks,
0
nessmssit
Asked:
nessmssit
1 Solution
 
lrmooreCommented:
Build the tunnels with two peers, putting the primary peer first. It will be first come, first served. If the first peer is unreachable, it will establish tunnel with 2nd peer.
Set the PIX and the VPn3000 to use OSPF and enable reverse route injection to tell your internal router which way that remote subnet is available through. Don't have an internal router? You need one. Your PIX cannot be the network's default gateway if you want this to work.
0

Featured Post

The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now