IPsec VPN High Availability with HSRP
This is a feature of that support VPN with HSRP, redundant IPsec peer for VPN network.Some notes for this topic:
-HSRP only support on Ethernet and some L2 ATM, such as LANE...
-With the test on 12.4, there're difference in time to recover the VPN connection b/w two peers. Recover time from secondary router ( previously standby) is faster. Preempt delay time is not in effect.
1 comment:
Possibly a bug if interface ethernet in HSRP group is shut. There's still a VPN static route in routing table of standby router ( in init state in group because of interface down), causing the routing table of R5 having 2 routes of 67.0/24
Post a Comment