Solved

Site-to-Site VPN Load Balancing with Cisco

Posted on 2010-08-27
4
1,623 Views
Last Modified: 2012-05-10
What I am wondering about is if there is a way to load balance 2 VPN tunnels as one..  The picture below shows my situation... I have a site with 1 ISP that has a 2821 router, and a 2nd site with 2 different ISPs with a cisco 1841 router.  I am wondering if I can establish 2 seperate tunnels between the devices, and then somehow loadbalance traffic over the 2 seperate tunnels?  The reason I want to set this up is because the ISP3 in the picture below is much better than ISP1 and 2 and we are maxed out with ISP1 and 2 as far as bandwidth goes.

I am not interested in purchasing a seperate piece of equipment to handle the VPN load balancing... Just wondering if it is possible with the Ciscos we have?

 Example Picture
If that does not work out, then I am planning on establishing the 2 VPN tunnels, and sending some of our traffic through 1 tunnel, and the rest through the 2nd tunnel..  If you know of any problems with that type of setup, please feel free to let me know..

Appreciate any help you can provide!

Thanks!
0
Comment
Question by:cathchar
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 9

Accepted Solution

by:
ffleisma earned 500 total points
ID: 33544299
you can setup an GRE over ipsec instead of the normal l2l ipsec. the difference is that GRE over ipsec can carry routed protocols over the ipsec, effectively you would then be able to setup a routing protocol between the sites. OSPF and EIGRP are two routing protocols that enables load balancing.

with just an l2l ipsec VPN, i don't think you could load balance but you can have the setup fail-over for redundancy.

hope this helps :-)
0
 

Author Comment

by:cathchar
ID: 33544359
I've heard of GRE,,, but not too familiar with it... If anyone has any links about configuring GRE over IPSEC on ciscos, I'd be thankful for your post..

I definately need the encryption, so GRE over IPSEC sounds great...

Thanks ffleisma,,,  keep the info coming if you got it guys.,.. Appreciate it!
0
 
LVL 9

Expert Comment

by:ffleisma
ID: 33544410
0
 

Author Closing Comment

by:cathchar
ID: 33558779
Great info.. Exactly what I am looking for.  Thanks!
0

Featured Post

Optimum High-Definition Video Viewing and Control

The ATEN VM0404HA 4x4 4K HDMI Matrix Switch supports 4K resolutions of UHD (3840 x 2160) and DCI (4096 x 2160) with refresh rates of 30 Hz (4:4:4) and 60 Hz (4:2:0). It is ideal for applications where the routing of 4K digital signals is required.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Course of the Month9 days, 9 hours left to enroll

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question