• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 251
  • Last Modified:

VPN Backup routing

Hi,

I want a VPN backup between 2 sites. The sites are currently connected using 2 layer 3 switches.

I have a Sonicwall on either site running the Enhanced firmware and a VPN is established over ADSL. I added in a second route with a metric of 2 on the switches and this points to the LAN IP of the Sonicwall.

When I pull the cable on the primary link I see that the route on the switch changes to point to the inside of the Sonicwall but my pings are timing out and the firewall isn't dropping the packets as I am tracing them and the traffic is allowed across the VPN tunnels.

Does it have a problem with sending the traffic back out onto its LAN interface when the primary link goes down?
0
davewex
Asked:
davewex
1 Solution
 
cstosgaleCommented:
You will have to use dynamic routing accross your point to point link to fix this I suspect. When you pull the cable at one site, I suspect the interface at the other site is still connected, and the interface is up. So the pings go accross the VPN, but the replys tr to go via the point to point link. If you use a routing protocol such as OSPF or EIGRP, the layer 3 switches will be able to detect that they no longer have connectivity to each other and the routes will drop.

you will then simply need static routes with a distance set of over 100 and these will act as the backup.
0
 
davewexAuthor Commented:
Hi thanks for the reply. I thought I had closed this question. I fixed it by setting up tracking on the routes

cheers
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now