Failover internet connection - but with a VPN?

Posted on 2011-10-05
Last Modified: 2013-12-14

Here's the situation - we have our main office and then a remote office.  Cisco ASA at both ends.  There is also a VPN tunnel between the two facilities.
We frequently have internet connection issues at the remote office, meaning we lose connection entirely to them.

What would be involved in getting a device that could failover to a second connection, perhaps a DSL connection, automatically.

What makes it complicated (i would think) is the fact there's a VPN tunnel between the facilities.

What would my options be?
Question by:Mystical_Ice
    LVL 12

    Accepted Solution

    depends on your budget :)

    HSRP is a great option, where you run multiple routers and if one link goes down it automatically fails over the second router with the extra connection (DSL)?.. because your ASA is behind your router it would still work, as the destination hasnt changed (if its the originating device).. have a watch of this video to see whether it suits you..
    LVL 14

    Assisted Solution

    LVL 16

    Assisted Solution

    An alternaitve option would be to have the L2L VPN setup as a Network Extension Mode remote access VPN. Then, use SLA monitoring on the remote ASA to determine if the internet connection fails over and change the default route. The VPN would have to be initiated by traffic at the remote end, but the remote users would then be able to connect if the primary link failed.

    Review the following for config of the VPN

    Review the following for SLA Monitoring.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Do You Know the 4 Main Threat Actor Types?

    Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

    Sometimes you have to pull out old tricks to get a new firewall to work… While we were installing a new Sonicwall at a customers site we found that sites they were able to visit before were not working.  It seemed random and we could not understa…
    This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
    Explain concepts important to validation of email addresses with regular expressions. Applies to most languages/tools that uses regular expressions. Consider email address RFCs: Look at HTML5 form input element (with type=email) regex pattern: T…
    The viewer will learn how to create and use a small PHP class to apply a watermark to an image. This video shows the viewer the setup for the PHP watermark as well as important coding language. Continue to Part 2 to learn the core code used in creat…

    794 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    16 Experts available now in Live!

    Get 1:1 Help Now