Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Floating static routes for VPN backup connectivity 1

Status
Not open for further replies.
tNscheffer

tNscheffer

IS-IT--Management
Jul 15, 2009
18
0
0
US
I have a central location and four remote locations with a router at each location. I will have private leased lines for main WAN connectivity. I will also be using IPsec over GRE for VPN backups from each location to the central location over the public IP cloud. My plan is to configure EIGRP on each of the routers as well as "floating static routes" for the GRE tunnels.

My questions are:

1. Will this work to ensure that the VPNs are only used in the event that the main WAN connectivity goes down and that the VPNs are not used when the main WAN connectivity comes back up?

2. If the floating routes are configured for the GRE tunnels, will this prevent the EIGRP protocol from using the GRE tunnels as part of its topology?

3. Should this be the other way around (meaning should I configure static routes for the main WAN links and EIGRP for the GRE tunnels?)

4. If I do configure it as mentioned in question 3, won't the static routes have to be manually re-added to the table when the WAN links come back up (as opposed to GRE tunnels which are always considered up so the static routes would never be removed from the table)?

The idea is to get the VPN backups to work transparently without any manual adjustments to the router config. Any thoughts would be greatly appreciated. Thank you.
 
Sort by date Sort by votes
Can you tell a little more about the WAN connectivity?? Will your service provider allow you to redistribute EIGRP into BGP?? A lot of SPs that I know of will allow you to redistribute OSPF into BGP but not EIGRP. I would look into implementing IP SLAs with interface tracking as opposed to floating static routes, but that is just my preference. If everything is setup correctly the preferred route for traffic amongst each location will be via the private WAN and if one or more connections is lost then the traffic will dynamically re-route over the L2L VPN connection.

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)
 
Upvote 0 Downvote
I was unaware of this feature. I looked into it and, surprisingly, it would be fairly simple to implement on this network. Thanks...probably one of THE most helpful answers I've received.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

teknance
  • Question
Discovering Portugal: Uncover Hidden Destinations and VPN Solutions
Replies
5
Views
306
GlobeTrekkerGal
GlobeTrekkerGal
sarahz2
  • Question
Best vpn safe and fast
Replies
4
Views
197
GlobeTrekkerGal
GlobeTrekkerGal
MP2023
  • Locked
  • Question
How to Create an site to site VPN
Replies
1
Views
169
sircles
sircles
ramblingrebel
  • Locked
  • Question
Built-in Windows 10 VPN
Replies
1
Views
126
Joon Smith
Joon Smith
LearningNetworking
  • Locked
  • Question
Linking Hosts on the same subnet via VPN
Replies
0
Views
220
LearningNetworking
LearningNetworking

Part and Inventory Search

Sponsor

Back
Top