Ran into a snafu on this one. Wanted to set up a backup route to a multilink int addr that is the customers primary internet link and which terminates several ipsec tunnels. i successfully created a backup route to that addr via a backup dsl link - connected to a lan int on the router, but, upon testing - shutting down multilink int on the provider side - it seems that addr is not reachable, presumably because the interface is administratively down. So, I'm wondering if a) i can just set up secondary tunnel endpoints on the remote tunnel devices via the backup lan interface addr and apply the same crypto map to the backup lan interface or b) i should terminate the tunnels on a loopback addr. Or perhaps there's a better solution I can't think of.
17 years ago