Internal fail over routing

- V
- videogamemaster
  
  Contact options for registered users
posted
17 years ago

Wed, Apr 4, 2007 3:23 PM

I have a point to point T1 that is connected between two Cisco 2620 routers. I also have two sonicwall firewalls (2040 and 3060) that can be configured to VPN to each other.

quick stats Network Firewall Location Internal router P2P IP (Example) Firewall External IP

192.168.200.x 2040 Main building 192.168.202.1 200.100.50.192/27 192.168.100.x 3060 Co-Location 192.168.202.2 50.100.200.1/24

So normally we route all traffic from 192.168.200.x to 192.168.100.x through 192.168.202.1, and everything from 192.168.100.x to

192.168.200.x through 192.168.202.2

What I would like to do is configure the routers so that if the P2P goes down, they failover to use the VPN instead, until the P2P is restored. I think we might use OSPF for this (?) but unsure of how to set it up or even if this is the right protocol.

Can anybody help? Let me know if you need more information....

Loading thread data ...

- V
- Vincent C Jones
  
  Contact options for registered users
Vote on answer
posted
17 years ago

Tue, Apr 10, 2007 1:02 AM

Yes, you can do this, although there are multiple restrictions. In particular, you can't run OSPF (or most other routing protocols) directly over a VPN. But you don't need to if the VPN is for backup (think of the VPN as a dial on demand link and think floating statics). Or you can use BGP, which will work through a VPN. Or you can use GRE tunnels to support the routing protocol of your choice. Don't forget to have a mechanism for testing the VPN link from time to time or you will discover the hard way that when you really need it, it no longer works.

Good luck and have fun!

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.